Bump the dev-minor-dependencies group across 1 directory with 10 updates

[dependabot[bot]]

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

---

Bumps the dev-minor-dependencies group with 10 updates in the / directory:

Package	From	To
@aws-sdk/client-s3	3.669.0	3.679.0
cookie-parser	1.4.6	1.4.7
express	4.21.0	4.21.1
express-session	1.18.0	1.18.1
nodemailer	6.9.15	6.9.16
@types/nodemailer	6.4.15	6.4.16
react-player	2.13.0	2.15.1
react-router-dom	6.26.2	6.27.0
typescript	5.6.2	5.6.3
tsx	4.19.1	4.19.2

Updates @aws-sdk/client-s3 from 3.669.0 to 3.679.0

Release notes

Sourced from @​aws-sdk/client-s3's releases.

v3.679.0

3.679.0(2024-10-24)

Chores

• client-nimble: deprecate nimble (#6583) (9a56eba2)
• client-athena: update release notes for athena breaking change (#6586) (9f45574f)

Documentation Changes

• client-pcs: Documentation update: added the default value of the Slurm configuration parameter scaleDownIdleTimeInSeconds to its description. (568714e5)

New Features

• clients: update client endpoints as of 2024-10-24 (c296fb57)
• client-qbusiness: Add a new field in chat response. This field can be used to support nested schemas in array fields (e7c6ed54)
• client-ec2: This release includes a new API to describe some details of the Amazon Machine Images (AMIs) that were used to launch EC2 instances, even if those AMIs are no longer available for use. (f6246389)
• client-ecs: This release adds support for EBS volumes attached to Amazon ECS Windows tasks running on EC2 instances. (eba29d1e)
• client-appconfig: This release improves deployment safety by granting customers the ability to REVERT completed deployments, to the last known good state.In the StopDeployment API revert case the status of a COMPLETE deployment will be REVERTED. AppConfig only allows a revert within 72 hours of deployment completion. (9c9494a6)

Tests

• packages: convert to vitest (#6588) (073cb754)
• convert private packages to vitest (#6587) (38debdee)
• conversions to vitest (#6585) (29420382)

---

For list of updated packages, view updated-packages.md in assets-3.679.0.zip

v3.678.0

3.678.0(2024-10-23)

Documentation Changes

• client-bedrock: Doc updates for supporting converse (6a255980)

New Features

• clients: update client endpoints as of 2024-10-23 (a03b3eec)
• client-mwaa: Introducing InvokeRestApi which allows users to invoke the Apache Airflow REST API on the webserver with the specified inputs. (180dd234)
• client-connect: Amazon Connect Service Feature: Add support to start screen sharing for a web calling contact. (aa538867)
• client-ec2: Amazon EC2 X8g, C8g and M8g instances are powered by AWS Graviton4 processors. X8g provide the lowest cost per GiB of memory among Graviton4 instances. C8g provide the best price performance for compute-intensive workloads. M8g provide the best price performance in for general purpose workloads. (fe1251ec)
• client-payment-cryptography: Add support for ECC P-256 and P-384 Keys. (e4119ab1)
• client-payment-cryptography-data: Add ECDH support on PIN operations. (2f74e23b)

Bug Fixes

• update error messge to NumberValue (#6579) (1902196a)

... (truncated)

Changelog

Sourced from @​aws-sdk/client-s3's changelog.

3.679.0 (2024-10-24)

Note: Version bump only for package @​aws-sdk/client-s3

3.678.0 (2024-10-23)

Note: Version bump only for package @​aws-sdk/client-s3

3.677.0 (2024-10-22)

Note: Version bump only for package @​aws-sdk/client-s3

3.676.0 (2024-10-21)

Note: Version bump only for package @​aws-sdk/client-s3

3.675.0 (2024-10-18)

Note: Version bump only for package @​aws-sdk/client-s3

3.674.0 (2024-10-17)

Note: Version bump only for package @​aws-sdk/client-s3

3.673.0 (2024-10-16)

... (truncated)

Commits

• e45fde3 Publish v3.679.0
• 2942038 test: conversions to vitest (#6585)
• 0c74dc7 Publish v3.678.0
• 25443cc Publish v3.677.0
• aa3086a Publish v3.676.0
• 053a868 chore(codegen): update smithy to 1.52.0 (#6577)
• 9e92f06 Publish v3.675.0
• a535403 Publish v3.674.0
• 77d0251 Publish v3.673.0
• e7f10a2 feat(client-s3): Add support for the new optional bucket-region and prefix qu...
• Additional commits viewable in compare view

Updates cookie-parser from 1.4.6 to 1.4.7

Release notes

Sourced from cookie-parser's releases.

1.4.7

What's Changed

• chore: add support for OSSF scorecard reporting by @​inigomarquinez in expressjs/cookie-parser#103
• ci: fix errors in ci github action for node 8 and 9 by @​inigomarquinez in expressjs/cookie-parser#104
• ci: Use GITHUB_OUTPUT envvar instead of set-output command by @​arunsathiya in expressjs/cookie-parser#100
• deps: cookie@0.7.2 by @​SamChatfield in expressjs/cookie-parser#116
• Release: 1.4.7 by @​UlisesGascon in expressjs/cookie-parser#117

New Contributors

• @​inigomarquinez made their first contribution in expressjs/cookie-parser#103
• @​arunsathiya made their first contribution in expressjs/cookie-parser#100
• @​SamChatfield made their first contribution in expressjs/cookie-parser#116
• @​UlisesGascon made their first contribution in expressjs/cookie-parser#117

Full Changelog: https://github.com/expressjs/cookie-parser/compare/1.4.6...1.4.7

Changelog

Sourced from cookie-parser's changelog.

1.4.7 / 2024-10-08

• deps: cookie@0.7.2
  • Fix object assignment of hasOwnProperty
• deps: cookie@0.7.1
  • Allow leading dot for domain
    • Although not permitted in the spec, some users expect this to work and user agents ignore the leading dot according to spec
  • Add fast path for serialize without options, use obj.hasOwnProperty when parsing
• deps: cookie@0.7.0
  • perf: parse cookies ~10% faster
  • fix: narrow the validation of cookies to match RFC6265
  • fix: add main to package.json for rspack
• deps: cookie@0.6.0
  • Add partitioned option
• deps: cookie@0.5.0
  • Add priority option
  • Fix expires option to reject invalid dates
  • pref: improve default decode speed
  • pref: remove slow string split in parse
• deps: cookie@0.4.2
  • pref: read value only when assigning in parse
  • pref: remove unnecessary regexp in parse

Commits

• 5d61e1e 1.4.7
• ccf1f54 deps: cookie@0.7.2 (#116)
• 429cfd4 ci: Use GITHUB_OUTPUT envvar instead of set-output command (#100)
• ca4c97e ci: fix errors in ci pipeline for node 8 and 9 (#104)
• 97bdf39 ci: add support for OSSF scorecard reporting (#103)
• e5862bd build: Node.js@17.6
• f0688d2 build: Node.js@14.19
• 44ec541 build: Node.js@16.14
• 695435a deps: cookie@0.4.2
• f66e7e1 build: mocha@9.2.1
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by ulisesgascon, a new releaser for cookie-parser since your current version.

Updates express from 4.21.0 to 4.21.1

Release notes

Sourced from express's releases.

4.21.1

What's Changed

• Backport a fix for CVE-2024-47764 to the 4.x branch by @​joshbuker in expressjs/express#6029
• Release: 4.21.1 by @​UlisesGascon in expressjs/express#6031

Full Changelog: https://github.com/expressjs/express/compare/4.21.0...4.21.1

Changelog

Sourced from express's changelog.

4.21.1 / 2024-10-08

• Backported a fix for CVE-2024-47764

Commits

• 8e229f9 4.21.1
• a024c8a fix(deps): cookie@0.7.1
• See full diff in compare view

Updates express-session from 1.18.0 to 1.18.1

Release notes

Sourced from express-session's releases.

1.18.1

What's Changed

• chore: add support for OSSF scorecard reporting by @​inigomarquinez in expressjs/session#984
• dep: cookie@0.7.2 by @​knolleary in expressjs/session#997
• Release: 1.18.1 by @​UlisesGascon in expressjs/session#998

New Contributors

• @​inigomarquinez made their first contribution in expressjs/session#984
• @​knolleary made their first contribution in expressjs/session#997
• @​UlisesGascon made their first contribution in expressjs/session#998

Full Changelog: https://github.com/expressjs/session/compare/v1.18.0...v1.18.1

Changelog

Sourced from express-session's changelog.

1.18.1 / 2024-10-08

• deps: cookie@0.7.2
  • Fix object assignment of hasOwnProperty
• deps: cookie@0.7.1
  • Allow leading dot for domain
    • Although not permitted in the spec, some users expect this to work and user agents ignore the leading dot according to spec
  • Add fast path for serialize without options, use obj.hasOwnProperty when parsing
• deps: cookie@0.7.0
  • perf: parse cookies ~10% faster
  • fix: narrow the validation of cookies to match RFC6265
  • fix: add main to package.json for rspack

Commits

• bbeca94 1.18.1
• 341b179 dep: cookie@0.7.2 (#997)
• 8f0a1c4 ci: add support for OSSF scorecard reporting (#984)
• See full diff in compare view

Maintainer changes

This version was pushed to npm by ulisesgascon, a new releaser for express-session since your current version.

Updates nodemailer from 6.9.15 to 6.9.16

Release notes

Sourced from nodemailer's releases.

v6.9.16

6.9.16 (2024-10-28)

Bug Fixes

• addressparser: Correctly detect if user local part is attached to domain part (f2096c5)

Changelog

Sourced from nodemailer's changelog.

6.9.16 (2024-10-28)

Bug Fixes

• addressparser: Correctly detect if user local part is attached to domain part (f2096c5)

Commits

• e70b9c1 chore(master): release 6.9.16 [skip-ci] (#1688)
• bcf55be Bumped deps
• f2096c5 fix(addressparser): Correctly detect if user local part is attached to domain...
• See full diff in compare view

Updates @types/nodemailer from 6.4.15 to 6.4.16

Commits

• See full diff in compare view

Updates react-player from 2.13.0 to 2.15.1

Release notes

Sourced from react-player's releases.

v2.15.1

Bug Fixes

• dynamic Mux import (#1758) (ceff8c3), closes #1755

v2.15.0

Features

• add Mux player (#1748) (62dabf1)

v2.14.1

Bug Fixes

• cjs interop require default pita (#1722) (a35f3c5)

v2.14.0

This release should be a no-op (no changes) but the whole build / bundle tooling was replaced so please report any issues that would come up loading / bundling react-player 🙏

Features

• modernize build using esbuild (#1684) (8a4a9aa)

Bug Fixes

• pkg repository.url (#1708) (3a0fbca)
• repo url (#1709) (9d58201)

Changelog

Sourced from react-player's changelog.

v2.15.1

2 March 2024

• fix: dynamic Mux import [#1758](https://github.com/cookpete/react-player/issues/1758)
• docs: fix demo URL [#1752](https://github.com/cookpete/react-player/issues/1752)
• docs: readme updates, next-video callout [#1751](https://github.com/cookpete/react-player/issues/1751)
• fix: dynamic Mux import (#1758) [#1755](https://github.com/cookpete/react-player/issues/1755)
• chore(release): 2.15.1 4d7fcb5

v2.15.0

28 February 2024

• chore(cd): remove --changelog b/c auto-changelog [#1750](https://github.com/cookpete/react-player/issues/1750)
• feat: add Mux player [#1748](https://github.com/cookpete/react-player/issues/1748)
• chore(github-pages): add demo preview [#1747](https://github.com/cookpete/react-player/issues/1747)
• chore: remove unneeded config files [#1744](https://github.com/cookpete/react-player/issues/1744)
• Add aria-label to Preview component [#1705](https://github.com/cookpete/react-player/issues/1705)
• Add Deno-specific browser check [#1632](https://github.com/cookpete/react-player/issues/1632)
• docs: fix badges [#1735](https://github.com/cookpete/react-player/issues/1735)
• chore(release): 2.15.0 6dfff1c

v2.14.1

19 December 2023

• fix: cjs interop require default pita [#1722](https://github.com/cookpete/react-player/issues/1722)
• docs(CHANGELOG): 2.14.1 921b0e0
• chore(release): 2.14.1 8ca9747
• chore: npm ignore unneeded folders 678f466

v2.14.0

14 December 2023

• fix: repo url [#1709](https://github.com/cookpete/react-player/issues/1709)
• fix: pkg repository.url [#1708](https://github.com/cookpete/react-player/issues/1708)
• chore: add CD workflow [#1706](https://github.com/cookpete/react-player/issues/1706)
• chore: use Node matrix with 16.x, 18.x, 20.x [#1688](https://github.com/cookpete/react-player/issues/1688)
• docs: update demo App.js link [#1689](https://github.com/cookpete/react-player/issues/1689)
• fix: modernize build using esbuild [#1684](https://github.com/cookpete/react-player/issues/1684)
• docs(CHANGELOG): 2.14.0 e018c42
• chore(release): 2.14.0 1496f67

Commits

• 4d7fcb5 chore(release): 2.15.1
• ceff8c3 fix: dynamic Mux import (#1758)
• a4baf37 docs: fix demo URL (#1752)
• 23b6334 docs: readme updates, next-video callout (#1751)
• 6dfff1c chore(release): 2.15.0
• db5c548 chore(cd): remove --changelog b/c auto-changelog (#1750)
• 62dabf1 feat: add Mux player (#1748)
• 34c8f60 chore(github-pages): add demo preview (#1747)
• 141b843 chore: remove unneeded config files (#1744)
• 08240af Add aria-label to Preview component (#1705)
• Additional commits viewable in compare view

Updates react-router-dom from 6.26.2 to 6.27.0

Release notes

Sourced from react-router-dom's releases.

react-router-dom-v5-compat@6.4.0-pre.15

Patch Changes

• Updated dependencies
  • react-router@6.4.0-pre.15
  • react-router-dom@6.4.0-pre.15

react-router-dom-v5-compat@6.4.0-pre.11

Patch Changes

• Updated dependencies
  • react-router@6.4.0-pre.11
  • react-router-dom@6.4.0-pre.11

react-router-dom-v5-compat@6.4.0-pre.10

Patch Changes

• Updated dependencies
  • react-router@6.4.0-pre.10
  • react-router-dom@6.4.0-pre.10

react-router-dom-v5-compat@6.4.0-pre.9

Patch Changes

• Updated dependencies
  • react-router@6.4.0-pre.9
  • react-router-dom@6.4.0-pre.9

react-router-dom-v5-compat@6.4.0-pre.8

Patch Changes

• Updated dependencies
  • react-router@6.4.0-pre.8
  • react-router-dom@6.4.0-pre.8

react-router-dom-v5-compat@6.4.0-pre.7

Patch Changes

• Updated dependencies
  • react-router@6.4.0-pre.7
  • react-router-dom@6.4.0-pre.7

react-router-dom-v5-compat@6.4.0-pre.6

Patch Changes

• 44bce3c6: Fix react-router-dom peer dependency version
  • react-router@6.4.0-pre.6
  • react-router-dom@6.4.0-pre.6

react-router-dom-v5-compat@6.4.0-pre.5

... (truncated)

Changelog

Sourced from react-router-dom's changelog.

6.27.0

Minor Changes

• Stabilize unstable_patchRoutesOnNavigation (#11973)
  • Add new PatchRoutesOnNavigationFunctionArgs type for convenience (#11967)
• Stabilize unstable_dataStrategy (#11974)
• Stabilize the unstable_flushSync option for navigations and fetchers (#11989)
• Stabilize the unstable_viewTransition option for navigations and the corresponding unstable_useViewTransitionState hook (#11989)

Patch Changes

• Fix bug when submitting to the current contextual route (parent route with an index child) when an ?index param already exists from a prior submission (#12003)

• Fix useFormAction bug - when removing ?index param it would not keep other non-Remix index params (#12003)

• Fix types for RouteObject within PatchRoutesOnNavigationFunction's patch method so it doesn't expect agnostic route objects passed to patch (#11967)

• Updated dependencies:

  • react-router@6.27.0
  • @remix-run/router@1.20.0

Commits

• 8cfb4a7 chore: Update version for release (#12121)
• cde8139 chore: Update version for release (pre) (#12112)
• 9a62e35 chore: Update version for release (pre) (#12101)
• 0389eba Fix issues with contextual routing and index params (#12003)
• 73fcb9b Stabilize viewTransiton and flushSync options (#11989)
• 8c9e2b6 Fix types for PatchRoutesOnNavigationFunction (#11967)
• 09c1978 Stabilize unstable_dataStrategy (#11974)
• 25e4981 Stabilize unstable_patchRoutesOnNavigation (#11973)
• See full diff in compare view

Updates typescript from 5.6.2 to 5.6.3

Release notes

Sourced from typescript's releases.

TypeScript 5.6.3

For release notes, check out the release announcement.

For the complete list of fixed issues, check out the

• fixed issues query for Typescript 5.6.0 (Beta).
• fixed issues query for Typescript 5.6.1 (RC).
• fixed issues query for Typescript 5.6.2 (Stable).
• fixed issues query for Typescript 5.6.3 (Stable).

Downloads are available on:

• npm
• NuGet package

Commits

• d48a5cf Bump version to 5.6.3 and LKG
• fefa70a 🤖 Pick PR #60083 (Don't issue implicit any when obtai...) into release-5.6 (#...
• ff71692 [release-5.6] Remove tsbuildInfo specification error now that we need it for ...
• 1f44dcf 🤖 Pick PR #60157 (fix automatic type acquisition) into release-5.6 (#60169)
• See full diff in compare view

Updates tsx from 4.19.1 to 4.19.2

Release notes

Sourced from tsx's releases.

v4.19.2

4.19.2 (2024-10-26)

Bug Fixes

• generate sourcesContent when Node.js debugger is enabled (#670) (7c47074)

---

This release is also available on:

• npm package (@​latest dist-tag)

Commits

• 7c47074 fix: generate sourcesContent when Node.js debugger is enabled (#670)
• 315d5f4 docs(watch): document --include flag
• 375e39a test: refactor enforce-timeout
• 524cb77 docs(cjs): add compilation caveats
• 7f8a051 chore(deps): update dependency node to v20.18.0 (#660)
• 97e8de0 chore: upgrade pnpm
• 95d2b0f chore: remove commit hooks
• 0161078 docs: add prisma as a premium sponsor
• 09f9532 chore(docs): fix typo (#655)
• See full diff in compare view

Most Recent Ignore Conditions Applied to This Pull Request

| Dependency Name | Ignore Conditions | | --- | --- | | react-player | [>= 2.16.a, < 2.17] |

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions

[dependabot[bot]]

Looks like these dependencies are no longer being updated by Dependabot, so this is no longer needed.