Bump the everything-else group across 1 directory with 7 updates

[dependabot[bot]]

Bumps the everything-else group with 7 updates in the / directory:

Package	From	To
axios	1.6.2	1.7.2
protobufjs	7.2.4	7.3.2
uuid	9.0.1	10.0.0
ws	8.16.0	8.17.1
@types/node	20.12.5	20.14.2
prettier	3.2.2	3.3.2
ts-proto	1.172.0	1.180.0

Updates axios from 1.6.2 to 1.7.2

Release notes

Sourced from axios's releases.

Release v1.7.2

Release notes:

Bug Fixes

• fetch: enhance fetch API detection; (#6413) (4f79aef)

Contributors to this release

• Dmitriy Mozgovoy

Release v1.7.1

Release notes:

Bug Fixes

• fetch: fixed ReferenceError issue when TextEncoder is not available in the environment; (#6410) (733f15f)

Contributors to this release

• Dmitriy Mozgovoy

Release v1.7.0

Release notes:

Features

• adapter: add fetch adapter; (#6371) (a3ff99b)

Bug Fixes

• core/axios: handle un-writable error stack (#6362) (81e0455)

Contributors to this release

• Dmitriy Mozgovoy
• Jay
• Alexandre ABRIOUX

Release v1.7.0-beta.2

Release notes:

Bug Fixes

• fetch: capitalize HTTP method names; (#6395) (ad3174a)
• fetch: fix & optimize progress capturing for cases when the request data has a nullish value or zero data length (#6400) (95a3e8e)
• fetch: fix headers getting from a stream response; (#6401) (870e0a7)

Contributors to this release

• Dmitriy Mozgovoy

Release v1.7.0-beta.1

Release notes:

... (truncated)

Changelog

Sourced from axios's changelog.

1.7.2 (2024-05-21)

Bug Fixes

• fetch: enhance fetch API detection; (#6413) (4f79aef)

Contributors to this release

• Dmitriy Mozgovoy

1.7.1 (2024-05-20)

Bug Fixes

• fetch: fixed ReferenceError issue when TextEncoder is not available in the environment; (#6410) (733f15f)

Contributors to this release

• Dmitriy Mozgovoy

1.7.0 (2024-05-19)

Features

• adapter: add fetch adapter; (#6371) (a3ff99b)

Bug Fixes

• core/axios: handle un-writable error stack (#6362) (81e0455)

Contributors to this release

• Dmitriy Mozgovoy
• Jay
• Alexandre ABRIOUX

1.7.0-beta.2 (2024-05-19)

Bug Fixes

• fetch: capitalize HTTP method names; (#6395) (ad3174a)
• fetch: fix & optimize progress capturing for cases when the request data has a nullish value or zero data length (#6400) (95a3e8e)
• fetch: fix headers getting from a stream response; (#6401) (870e0a7)

Contributors to this release

... (truncated)

Commits

• 0e4f9fa chore(release): v1.7.2 (#6414)
• 4f79aef fix(fetch): enhance fetch API detection; (#6413)
• 67d1373 chore(release): v1.7.1 (#6411)
• 733f15f fix(fetch): fixed ReferenceError issue when TextEncoder is not available in t...
• 3041c61 [Release] v1.7.0 (#6408)
• 18b13cb chore(docs): add fetch adapter docs; (#6407)
• e62099b fix(fetch): fixed a possible memory leak in the AbortController for the strea...
• b49aa8e chore(release): v1.7.0-beta.2 (#6403)
• d57f03a chore(ci): bump create-pull-request version to fix a bug; (#6405)
• 097b0d1 chore(ci): add tag resolution for npm releases based on package version; (#6404)
• Additional commits viewable in compare view

Updates protobufjs from 7.2.4 to 7.3.2

Release notes

Sourced from protobufjs's releases.

protobufjs: v7.3.2

7.3.2 (2024-06-12)

Bug Fixes

• docs: Update readme to correct command for creating types (#1939) (0f9d477)
• Also fixes an issue with 7.3.1, where the dist/ folder containing the build artifacts was missing on npm.

protobufjs: v7.3.1

7.3.1 (2024-06-05)

Bug Fixes

• types: reserved field in IType can contain reserved names (#2001) (d1d2c0c)

protobufjs: v7.3.0

7.3.0 (2024-05-10)

Features

• add handling for extension range options (#1990) (2d58011)

protobufjs: v7.2.6

7.2.6 (2024-01-16)

Bug Fixes

• report missing import properly in loadSync (#1960) (af3ff83)

protobufjs: v7.2.5

7.2.5 (2023-08-21)

Bug Fixes

• crash in comment parsing (#1890) (eaf9f0a)
• deprecation warning for new Buffer (#1905) (e93286e)
• possible infinite loop when parsing option (#1923) (f2a8620)

Changelog

Sourced from protobufjs's changelog.

7.3.2 (2024-06-12)

Bug Fixes

• docs: Update readme to correct command for creating types (#1939) (0f9d477)

7.3.1 (2024-06-05)

Bug Fixes

• types: reserved field in IType can contain reserved names (#2001) (d1d2c0c)

7.3.0 (2024-05-10)

Features

• add handling for extension range options (#1990) (2d58011)

7.2.6 (2024-01-16)

Bug Fixes

• report missing import properly in loadSync (#1960) (af3ff83)

7.2.5 (2023-08-21)

Bug Fixes

• crash in comment parsing (#1890) (eaf9f0a)
• deprecation warning for new Buffer (#1905) (e93286e)
• possible infinite loop when parsing option (#1923) (f2a8620)

Commits

• 0a0cdb6 chore: release master (#2005)
• 0f9d477 fix(docs): Update readme to correct command for creating types (#1939)
• a71ef76 chore: release master (#2002)
• d1d2c0c fix(types): reserved field in IType can contain reserved names (#2001)
• 11393ea chore: Renovate README.md (#1995)
• 722b635 chore: release master (#1991)
• 2d58011 feat: add handling for extension range options (#1990)
• 2f846fe chore: release master (#1962)
• af3ff83 fix: report missing import properly in loadSync (#1960)
• 4436cc7 chore: release master (#1925)
• Additional commits viewable in compare view

Updates uuid from 9.0.1 to 10.0.0

Changelog

Sourced from uuid's changelog.

10.0.0 (2024-06-07)

⚠ BREAKING CHANGES

• update node support (drop node@12, node@14, add node@20) (#750)

Features

• support support rfc9562 MAX uuid (new in RFC9562) (#714) (0385cd3)
• support rfc9562 v6 uuids (#754) (c4ed13e)
• support rfc9562 v7 uuids (#681) (db76a12)
• update node support matrix (only support node 16-20) (#750) (883b163)
• support rfc9562 v8 uuids (#759) (35a5342)

Bug Fixes

• revert "perf: remove superfluous call to toLowerCase (#677)" (#738) (e267b90)

Commits

• da189d1 chore: typo in CHANGELOG
• 65022f7 chore(release): 10.0.0
• 35a5342 feat: v8 support (#759)
• c4ed13e feat: support v6 uuids (#754)
• 8c3ed07 chore: enable corepack w/ npm (#757)
• f24c530 docs: updates for RFC9562 (#753)
• 59c2711 chore: update package dependencies (#752)
• 3fd0f18 build: use node:crypto not crypto when importing (#736)
• 1faad97 ci: disable husky for browserstack builds
• 2cc6c93 ci: cleanup action versions and caching (#707)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by broofa, a new releaser for uuid since your current version.

Updates ws from 8.16.0 to 8.17.1

Release notes

Sourced from ws's releases.

8.17.1

Bug fixes

• Fixed a DoS vulnerability (#2231).

A request with a number of headers exceeding the[server.maxHeadersCount][] threshold could be used to crash a ws server.

const http = require('http');
const WebSocket = require('ws');
const server = http.createServer();
const wss = new WebSocket.Server({ server });
server.listen(function () {
const chars = "!#$%&'*+-.0123456789abcdefghijklmnopqrstuvwxyz^_`|~".split('');
const headers = {};
let count = 0;
for (let i = 0; i < chars.length; i++) {
if (count === 2000) break;
for (let j = 0; j &lt; chars.length; j++) {
  const key = chars[i] + chars[j];
  headers[key] = 'x';

  if (++count === 2000) break;
}

}
headers.Connection = 'Upgrade';
headers.Upgrade = 'websocket';
headers['Sec-WebSocket-Key'] = 'dGhlIHNhbXBsZSBub25jZQ==';
headers['Sec-WebSocket-Version'] = '13';
const request = http.request({
headers: headers,
host: '127.0.0.1',
port: server.address().port
});
request.end();
});

The vulnerability was reported by Ryan LaPointe in websockets/ws#2230.

In vulnerable versions of ws, the issue can be mitigated in the following ways:

... (truncated)

Commits

• 3c56601 [dist] 8.17.1
• e55e510 [security] Fix crash when the Upgrade header cannot be read (#2231)
• 6a00029 [test] Increase code coverage
• ddfe4a8 [perf] Reduce the amount of crypto.randomFillSync() calls
• b73b118 [dist] 8.17.0
• 29694a5 [test] Use the highWaterMark variable
• 934c9d6 [ci] Test on node 22
• 1817bac [ci] Do not test on node 21
• 96c9b3d [major] Flip the default value of allowSynchronousEvents (#2221)
• e5f32c7 [fix] Emit at most one event per event loop iteration (#2218)
• Additional commits viewable in compare view

Updates @types/node from 20.12.5 to 20.14.2

Commits

• See full diff in compare view

Updates prettier from 3.2.2 to 3.3.2

Release notes

Sourced from prettier's releases.

3.3.2

🔗 Changelog

3.3.1

🔗 Changelog

3.3.0

diff

🔗 Release note

3.2.5

🔗 Changelog

3.2.4

• Fix .eslintrc.json format #15947

🔗 Changelog

3.2.3

• Format tsconfig.json file with jsonc parser #15927

🔗 Changelog

Changelog

Sourced from prettier's changelog.

3.3.2

diff

Fix handlebars path expressions starts with @ (#16358 by @​Princeyadav05)

{{! Input }}
<div>{{@x.y.z}}</div>
{{! Prettier 3.3.1 }}
<div>{{@​x}}</div>
{{! Prettier 3.3.2 }}
<div>{{@​x.y.z}}</div>

3.3.1

diff

Preserve empty lines in front matter (#16347 by @​fisker)

<!-- Input -->
---
foo:
  - bar1


bar2


bar3



Markdown
<!-- Prettier 3.3.0 -->

foo:

bar1
bar2
bar3


Markdown
<!-- Prettier 3.3.1 -->
</tr></table>

... (truncated)

Commits

• 1596a60 Release 3.3.2
• aebcee5 chore(deps): update dependency esbuild to v0.21.5 (#16379)
• 57aa928 chore(deps): update dependency c8 to v10 (#16380)
• c3d0b7f chore(deps): update typescript-eslint to v7.13.0 (#16376)
• 27c35db chore(deps): update dependency codemirror-graphql to v2.0.12 (#16369)
• 6de3258 chore(deps): update dependency jest to v30.0.0-alpha.5 (#16371)
• b5f983d Upgrade yarn to v4.3.0 (#16377)
• d6f37c4 chore(deps): update dependency browserslist to v4.23.1 (#16368)
• 5055b7d chore(deps): update dependency execa to v9.2.0 (#16372)
• f4608cc chore(deps): update dependency cspell to v8.8.4 (#16370)
• Additional commits viewable in compare view

Updates ts-proto from 1.172.0 to 1.180.0

Release notes

Sourced from ts-proto's releases.

v1.180.0

1.180.0 (2024-06-15)

Features

• oneof=unions-value to use the same field name for oneof cases (#1062) (7493090), closes #1060

v1.179.0

1.179.0 (2024-06-15)

Features

• bigIntLiteral option for using BigInt literals (#1063) (b89fbcb), closes #928 #932

v1.178.0

1.178.0 (2024-06-07)

Features

• no-file-descriptor setting for outputSchema option (#1047) (c54f06c)

v1.177.0

1.177.0 (2024-06-07)

Features

• add option noDefaultsForOptionals (#1051) (41d1020)

v1.176.3

1.176.3 (2024-06-07)

Bug Fixes

• Add check for lower bound with forceLong=number (#1057) (01ef3c3)

v1.176.2

1.176.2 (2024-06-04)

Bug Fixes

• Fix snake casing numbers. (#1052) (f85a2f1), closes #1048

v1.176.1

1.176.1 (2024-05-25)

... (truncated)

Changelog

Sourced from ts-proto's changelog.

1.180.0 (2024-06-15)

Features

• oneof=unions-value to use the same field name for oneof cases (#1062) (7493090), closes #1060

1.179.0 (2024-06-15)

Features

• bigIntLiteral option for using BigInt literals (#1063) (b89fbcb), closes #928 #932

1.178.0 (2024-06-07)

Features

• no-file-descriptor setting for outputSchema option (#1047) (c54f06c)

1.177.0 (2024-06-07)

Features

• add option noDefaultsForOptionals (#1051) (41d1020)

1.176.3 (2024-06-07)

Bug Fixes

• Add check for lower bound with forceLong=number (#1057) (01ef3c3)

1.176.2 (2024-06-04)

Bug Fixes

• Fix snake casing numbers. (#1052) (f85a2f1), closes #1048

1.176.1 (2024-05-25)

Bug Fixes

• camelToSnake to respect uppercase words, such as "GetAPIValue" -> "GET_API_VALUE" (#1046) (d2e75cd)

1.176.0 (2024-05-16)

... (truncated)

Commits

• 84ccaf2 chore(release): 1.180.0 [skip ci]
• 7493090 feat: oneof=unions-value to use the same field name for oneof cases (#1062)
• 227ae46 chore(release): 1.179.0 [skip ci]
• b89fbcb feat: bigIntLiteral option for using BigInt literals (#1063)
• db1b1a2 chore(release): 1.178.0 [skip ci]
• c54f06c feat: no-file-descriptor setting for outputSchema option (#1047)
• 58deee2 chore(release): 1.177.0 [skip ci]
• 41d1020 feat: add option noDefaultsForOptionals (#1051)
• e61deab chore(release): 1.176.3 [skip ci]
• 01ef3c3 fix: Add check for lower bound with forceLong=number (#1057)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions

[dependabot[bot]]

Looks like these dependencies are updatable in another way, so this is no longer needed.