fix(deps): update all non-major dependencies

This PR contains the following updates:

Package	Change	Type	Update
@opentelemetry/api (source)	`1.6.0` -> `1.7.0`	dependencies	minor
@opentelemetry/exporter-prometheus (source)	`^0.44.0` -> `^0.45.0`	dependencies	minor
@opentelemetry/exporter-trace-otlp-grpc (source)	`^0.44.0` -> `^0.45.0`	dependencies	minor
@opentelemetry/sdk-node (source)	`^0.44.0` -> `^0.45.0`	dependencies	minor
@opentelemetry/sdk-trace-node (source)	`1.17.1` -> `1.18.1`	dependencies	minor
@opentelemetry/semantic-conventions (source)	`1.17.1` -> `1.18.1`	dependencies	minor
@swc/core (source)	`1.3.95` -> `1.3.96`	devDependencies	patch
@types/node (source)	`20.8.10` -> `20.9.0`	devDependencies	minor
@typescript-eslint/eslint-plugin	`6.9.1` -> `6.10.0`	devDependencies	minor
@typescript-eslint/parser	`6.9.1` -> `6.10.0`	devDependencies	minor
bullmq (source)	`4.12.8` -> `4.13.2`	dependencies	minor
docker/build-push-action	`v4.1.1` -> `v4.2.1`	action	minor
node	`20.8.0-alpine` -> `20.9.0-alpine`	final	minor
vitepress (source)	`1.0.0-rc.24` -> `1.0.0-rc.25`	devDependencies	patch

Release Notes

open-telemetry/opentelemetry-js (@opentelemetry/api)

### [`v1.7.0`](https://togithub.com/open-telemetry/opentelemetry-js/blob/HEAD/CHANGELOG.md#170) [Compare Source](https://togithub.com/open-telemetry/opentelemetry-js/compare/v1.6.0...v1.7.0) ##### :bug: (Bug Fix) - fix(sdk-trace-base): make span start times resistant to hrtime clock drift [#3129](https://togithub.com/open-telemetry/opentelemetry-js/issues/3129) - fix(sdk-trace-base): validate maxExportBatchSize in BatchSpanProcessorBase [#3232](https://togithub.com/open-telemetry/opentelemetry-js/issues/3232) ##### :books: (Refine Doc) - docs(metrics): add missing metrics packages to SDK reference documentation [#3239](https://togithub.com/open-telemetry/opentelemetry-js/pull/3239) [@dyladan](https://togithub.com/dyladan) ##### :house: (Internal) - deps: update markdownlint-cli to 0.32.2 [#3253](https://togithub.com/open-telemetry/opentelemetry-js/pull/3253) [@pichlermarc](https://togithub.com/pichlermarc)

swc-project/swc (@swc/core)

### [`v1.3.96`](https://togithub.com/swc-project/swc/blob/HEAD/CHANGELOG.md#1396---2023-11-03) [Compare Source](https://togithub.com/swc-project/swc/compare/v1.3.95...v1.3.96) ##### Bug Fixes - **(ci)** Set `tag` for wasm publish actions ([#8200](https://togithub.com/swc-project/swc/issues/8200)) ([8db80b8](https://togithub.com/swc-project/swc/commit/8db80b8c28bba5a423194dd19ddf05ccd94eb650)) - **(es/compat)** Make `block-scoping` pass rename exports correctly ([#8175](https://togithub.com/swc-project/swc/issues/8175)) ([b13bc32](https://togithub.com/swc-project/swc/commit/b13bc320274e773c9b0ef479e86194c4c6f1f6f8)) - **(es/compat)** Use dummy span for blocks in `parameters` ([#8202](https://togithub.com/swc-project/swc/issues/8202)) ([c1b255a](https://togithub.com/swc-project/swc/commit/c1b255a59c1e8d81371c9576ca0c4573f04e65da)) - **(es/compat)** Handle private names from class properties pass ([#8090](https://togithub.com/swc-project/swc/issues/8090)) ([83a5a0c](https://togithub.com/swc-project/swc/commit/83a5a0c612b7ca97529720f8a35117957d4cb9a6)) - **(es/react)** Visit children nodes in `jsx-src` pass ([#8212](https://togithub.com/swc-project/swc/issues/8212)) ([47733a9](https://togithub.com/swc-project/swc/commit/47733a951c14bc22c2a60acb420b597ddab7d306)) - **(es/transforms)** Do not add `PURE` comment to `BytePos(0)` ([#8207](https://togithub.com/swc-project/swc/issues/8207)) ([c061356](https://togithub.com/swc-project/swc/commit/c061356b63431fcd0323e434402ead143c622340)) - **(es/typescript)** Preserve const enum for named export ([#8208](https://togithub.com/swc-project/swc/issues/8208)) ([abced23](https://togithub.com/swc-project/swc/commit/abced23b2a16e9602ffe59a20e6cbf65a882a3ce)) ##### Features - **(es/minifier)** Respect inline level and preserve native names ([#8205](https://togithub.com/swc-project/swc/issues/8205)) ([dd805e9](https://togithub.com/swc-project/swc/commit/dd805e95a4735e1b869c298489b80555ab4eb20d)) - **(es/preset-env)** Update compat data ([#8194](https://togithub.com/swc-project/swc/issues/8194)) ([3dc4e1e](https://togithub.com/swc-project/swc/commit/3dc4e1e02d3e594da6301ca4c80aaee582642fd7)) - **(es/testing)** Support babel-like fixture testing officially ([#8190](https://togithub.com/swc-project/swc/issues/8190)) ([e960614](https://togithub.com/swc-project/swc/commit/e9606147fc560cac2ffa75b917a08413b7c94908)) - **(es/testing)** Use `__swc_snapshots__` for `test!` macro ([#8191](https://togithub.com/swc-project/swc/issues/8191)) ([0aafa75](https://togithub.com/swc-project/swc/commit/0aafa75fef43beb6630b143e9d71f129300e7614)) ##### Performance - **(es/minifier)** Add `has_flag` to `Comments` ([#8182](https://togithub.com/swc-project/swc/issues/8182)) ([7530e90](https://togithub.com/swc-project/swc/commit/7530e9051d67d8721126e48c39f0a8ac27d980a5)) ##### Refactor - **(es/minifier)** Simplify analyzer context ([#8164](https://togithub.com/swc-project/swc/issues/8164)) ([bb02cdd](https://togithub.com/swc-project/swc/commit/bb02cdd26ed863649c6ec8ef9c5cbdaece743b9b))

typescript-eslint/typescript-eslint (@typescript-eslint/eslint-plugin)

### [`v6.10.0`](https://togithub.com/typescript-eslint/typescript-eslint/blob/HEAD/packages/eslint-plugin/CHANGELOG.md#6100-2023-11-06) [Compare Source](https://togithub.com/typescript-eslint/typescript-eslint/compare/v6.9.1...v6.10.0) ##### Bug Fixes - **eslint-plugin:** \[no-unused-vars] handle logical assignment ([#7854](https://togithub.com/typescript-eslint/typescript-eslint/issues/7854)) ([11e57c5](https://togithub.com/typescript-eslint/typescript-eslint/commit/11e57c5937cc2ad2e6b035f8d3fb25a918490960)) - **eslint-plugin:** \[require-await] add support for "await using" ([#7866](https://togithub.com/typescript-eslint/typescript-eslint/issues/7866)) ([855abea](https://togithub.com/typescript-eslint/typescript-eslint/commit/855abea2d7ba0235e61430f9481117af5f8f1bf7)) ##### Features - **eslint-plugin:** \[ban-ts-comments] suggest ts-expect-error over ts-ignore ([#7849](https://togithub.com/typescript-eslint/typescript-eslint/issues/7849)) ([5e73a48](https://togithub.com/typescript-eslint/typescript-eslint/commit/5e73a4810add09470426129bc6b267cfaa42c378)) You can read about our [versioning strategy](https://main--typescript-eslint.netlify.app/users/versioning) and [releases](https://main--typescript-eslint.netlify.app/users/releases) on our website. #### [6.9.1](https://togithub.com/typescript-eslint/typescript-eslint/compare/v6.9.0...v6.9.1) (2023-10-30) ##### Bug Fixes - **eslint-plugin:** \[naming-convention] allow PascalCase for imports ([#7841](https://togithub.com/typescript-eslint/typescript-eslint/issues/7841)) ([7ad86ee](https://togithub.com/typescript-eslint/typescript-eslint/commit/7ad86eead76fa9e96573ac011376c1cb8c009cee)) - **eslint-plugin:** \[no-unused-expressions] handle TSInstantiationExpression expression ([#7831](https://togithub.com/typescript-eslint/typescript-eslint/issues/7831)) ([31988e0](https://togithub.com/typescript-eslint/typescript-eslint/commit/31988e0d2e6cf5e6bb9bb287958b1f03ca084259)) You can read about our [versioning strategy](https://main--typescript-eslint.netlify.app/users/versioning) and [releases](https://main--typescript-eslint.netlify.app/users/releases) on our website.

typescript-eslint/typescript-eslint (@typescript-eslint/parser)

### [`v6.10.0`](https://togithub.com/typescript-eslint/typescript-eslint/blob/HEAD/packages/parser/CHANGELOG.md#6100-2023-11-06) [Compare Source](https://togithub.com/typescript-eslint/typescript-eslint/compare/v6.9.1...v6.10.0) **Note:** Version bump only for package [@typescript-eslint/parser](https://togithub.com/typescript-eslint/parser) You can read about our [versioning strategy](https://main--typescript-eslint.netlify.app/users/versioning) and [releases](https://main--typescript-eslint.netlify.app/users/releases) on our website. #### [6.9.1](https://togithub.com/typescript-eslint/typescript-eslint/compare/v6.9.0...v6.9.1) (2023-10-30) **Note:** Version bump only for package [@typescript-eslint/parser](https://togithub.com/typescript-eslint/parser) You can read about our [versioning strategy](https://main--typescript-eslint.netlify.app/users/versioning) and [releases](https://main--typescript-eslint.netlify.app/users/releases) on our website.

taskforcesh/bullmq (bullmq)

### [`v4.13.2`](https://togithub.com/taskforcesh/bullmq/releases/tag/v4.13.2) [Compare Source](https://togithub.com/taskforcesh/bullmq/compare/v4.13.1...v4.13.2) ##### Bug Fixes - **backoff:** fix builtin backoff type ([#2265](https://togithub.com/taskforcesh/bullmq/issues/2265)) \[python] ([76959eb](https://togithub.com/taskforcesh/bullmq/commit/76959eb9d9495eb1b6d2d31fab93c8951b5d3b93)) - **job:** set delay value on current job instance when it is retried ([#2266](https://togithub.com/taskforcesh/bullmq/issues/2266)) (python) ([76e075f](https://togithub.com/taskforcesh/bullmq/commit/76e075f54d5745b6cec3cb11305bf3110d963eae)) ### [`v4.13.1`](https://togithub.com/taskforcesh/bullmq/releases/tag/v4.13.1) [Compare Source](https://togithub.com/taskforcesh/bullmq/compare/v4.13.0...v4.13.1) ##### Bug Fixes - **connection:** better handling of attached listeners ([02474ad](https://togithub.com/taskforcesh/bullmq/commit/02474ad59a7b340d7bb2a7415ae7a88e14200398)) - **connection:** move redis instance check to queue base ([13a339a](https://togithub.com/taskforcesh/bullmq/commit/13a339a730f46ff22acdd4a046e0d9c4b7d88679)) ### [`v4.13.0`](https://togithub.com/taskforcesh/bullmq/releases/tag/v4.13.0) [Compare Source](https://togithub.com/taskforcesh/bullmq/compare/v4.12.10...v4.13.0) ##### Features - **queue:** improve clean to work iteratively ([#2260](https://togithub.com/taskforcesh/bullmq/issues/2260)) ([0cfa66f](https://togithub.com/taskforcesh/bullmq/commit/0cfa66fd0fa0dba9b3941f183cf6f06d8a4f281d)) ### [`v4.12.10`](https://togithub.com/taskforcesh/bullmq/releases/tag/v4.12.10) [Compare Source](https://togithub.com/taskforcesh/bullmq/compare/v4.12.9...v4.12.10) ##### Bug Fixes - update delay job property when moving to delayed set ([#2261](https://togithub.com/taskforcesh/bullmq/issues/2261)) ([69ece08](https://togithub.com/taskforcesh/bullmq/commit/69ece08babd7716c14c38c3dd50630b44c7c1897)) ### [`v4.12.9`](https://togithub.com/taskforcesh/bullmq/releases/tag/v4.12.9) [Compare Source](https://togithub.com/taskforcesh/bullmq/compare/v4.12.8...v4.12.9) ##### Bug Fixes - **add-job:** trim events when waiting-children event is published ([#2262](https://togithub.com/taskforcesh/bullmq/issues/2262)) (python) ([198bf05](https://togithub.com/taskforcesh/bullmq/commit/198bf05fa5a4e1ce50081296033a2e0f26ece498))

docker/build-push-action (docker/build-push-action)

### [`v4.2.1`](https://togithub.com/docker/build-push-action/releases/tag/v4.2.1) [Compare Source](https://togithub.com/docker/build-push-action/compare/v4.2.0...v4.2.1) > **Note** > > Buildx v0.10 enables support for a minimal [SLSA Provenance](https://slsa.dev/provenance/) attestation, which requires support for [OCI-compliant](https://togithub.com/opencontainers/image-spec) multi-platform images. This may introduce issues with registry and runtime support (e.g. [Google Cloud Run and AWS Lambda](https://togithub.com/docker/buildx/issues/1533)). You can optionally disable the default provenance attestation functionality using `provenance: false`. - warn if docker config can't be parsed by [@crazy-max](https://togithub.com/crazy-max) in [https://github.com/docker/build-push-action/pull/957](https://togithub.com/docker/build-push-action/pull/957) **Full Changelog**: https://github.com/docker/build-push-action/compare/v4.2.0...v4.2.1 ### [`v4.2.0`](https://togithub.com/docker/build-push-action/releases/tag/v4.2.0) [Compare Source](https://togithub.com/docker/build-push-action/compare/v4.1.1...v4.2.0) > **Note** > > Buildx v0.10 enables support for a minimal [SLSA Provenance](https://slsa.dev/provenance/) attestation, which requires support for [OCI-compliant](https://togithub.com/opencontainers/image-spec) multi-platform images. This may introduce issues with registry and runtime support (e.g. [Google Cloud Run and AWS Lambda](https://togithub.com/docker/buildx/issues/1533)). You can optionally disable the default provenance attestation functionality using `provenance: false`. - display proxy configuration by [@crazy-max](https://togithub.com/crazy-max) in [https://github.com/docker/build-push-action/pull/872](https://togithub.com/docker/build-push-action/pull/872) - chore(deps): Bump [@docker/actions-toolkit](https://togithub.com/docker/actions-toolkit) from 0.6.0 to 0.8.0 in [https://github.com/docker/build-push-action/pull/930](https://togithub.com/docker/build-push-action/pull/930) - chore(deps): Bump word-wrap from 1.2.3 to 1.2.5 in [https://github.com/docker/build-push-action/pull/925](https://togithub.com/docker/build-push-action/pull/925) - chore(deps): Bump semver from 6.3.0 to 6.3.1 in [https://github.com/docker/build-push-action/pull/902](https://togithub.com/docker/build-push-action/pull/902) **Full Changelog**: https://github.com/docker/build-push-action/compare/v4.1.1...v4.2.0

nodejs/node (node)

### [`v20.9.0`](https://togithub.com/nodejs/node/releases/tag/v20.9.0): 2023-10-24, Version 20.9.0 'Iron' (LTS), @richardlau [Compare Source](https://togithub.com/nodejs/node/compare/v20.8.1...v20.9.0) ##### Notable Changes This release marks the transition of Node.js 20.x into Long Term Support (LTS) with the codename 'Iron'. The 20.x release line now moves into "Active LTS" and will remain so until October 2024. After that time, it will move into "Maintenance" until end of life in April 2026. ##### Known issue Collecting code coverage via the `NODE_V8_COVERAGE` environment variable may lead to a hang. This is not thought to be a regression in Node.js 20 (some reports are on Node.js 18). For more information, including some potential workarounds, see issue [#49344](https://togithub.com/nodejs/node/issues/49344). ### [`v20.8.1`](https://togithub.com/nodejs/node/releases/tag/v20.8.1): 2023-10-13, Version 20.8.1 (Current), @RafaelGSS [Compare Source](https://togithub.com/nodejs/node/compare/v20.8.0...v20.8.1) This is a security release. ##### Notable Changes The following CVEs are fixed in this release: - [CVE-2023-44487](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44487): `nghttp2` Security Release (High) - [CVE-2023-45143](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-45143): `undici` Security Release (High) - [CVE-2023-39332](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39332): Path traversal through path stored in Uint8Array (High) - [CVE-2023-39331](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39331): Permission model improperly protects against path traversal (High) - [CVE-2023-38552](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38552): Integrity checks according to policies can be circumvented (Medium) - [CVE-2023-39333](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39333): Code injection via WebAssembly export names (Low) More detailed information on each of the vulnerabilities can be found in [October 2023 Security Releases](https://nodejs.org/en/blog/vulnerability/october-2023-security-releases/) blog post. ##### Commits - \[[`c86883e844`](https://togithub.com/nodejs/node/commit/c86883e844)] - **deps**: update nghttp2 to 1.57.0 (James M Snell) [#50121](https://togithub.com/nodejs/node/pull/50121) - \[[`2860631359`](https://togithub.com/nodejs/node/commit/2860631359)] - **deps**: update undici to v5.26.3 (Matteo Collina) [#50153](https://togithub.com/nodejs/node/pull/50153) - \[[`cd37838bf8`](https://togithub.com/nodejs/node/commit/cd37838bf8)] - **lib**: let deps require `node` prefixed modules (Matthew Aitken) [#50047](https://togithub.com/nodejs/node/pull/50047) - \[[`f5c90b2951`](https://togithub.com/nodejs/node/commit/f5c90b2951)] - **module**: fix code injection through export names (Tobias Nießen) [nodejs-private/node-private#461](https://togithub.com/nodejs-private/node-private/pull/461) - \[[`fa5dae1944`](https://togithub.com/nodejs/node/commit/fa5dae1944)] - **permission**: fix Uint8Array path traversal (Tobias Nießen) [nodejs-private/node-private#456](https://togithub.com/nodejs-private/node-private/pull/456) - \[[`cd35275111`](https://togithub.com/nodejs/node/commit/cd35275111)] - **permission**: improve path traversal protection (Tobias Nießen) [nodejs-private/node-private#456](https://togithub.com/nodejs-private/node-private/pull/456) - \[[`a4cb7fc7c0`](https://togithub.com/nodejs/node/commit/a4cb7fc7c0)] - **policy**: use tamper-proof integrity check function (Tobias Nießen) [nodejs-private/node-private#462](https://togithub.com/nodejs-private/node-private/pull/462)

vuejs/vitepress (vitepress)

### [`v1.0.0-rc.25`](https://togithub.com/vuejs/vitepress/blob/HEAD/CHANGELOG.md#100-rc25-2023-11-05) [Compare Source](https://togithub.com/vuejs/vitepress/compare/v1.0.0-rc.24...v1.0.0-rc.25) ##### Bug Fixes - double-slash format url should be external link ([#3165](https://togithub.com/vuejs/vitepress/issues/3165)) ([7dbeac6](https://togithub.com/vuejs/vitepress/commit/7dbeac6df0dfc0da74dffc79998a85a3afa86874)) - missing export types in localSearch ([#3157](https://togithub.com/vuejs/vitepress/issues/3157)) ([0761062](https://togithub.com/vuejs/vitepress/commit/0761062790b441eccd0d57d51903271f30e713af)) - **theme:** table row background-color in custom containers ([#3179](https://togithub.com/vuejs/vitepress/issues/3179)) ([beecec1](https://togithub.com/vuejs/vitepress/commit/beecec16a8d62c18f46522d461db353c97199415)) - **theme:** theme switch is not hidden on force-dark ([#3155](https://togithub.com/vuejs/vitepress/issues/3155)) ([2276c1d](https://togithub.com/vuejs/vitepress/commit/2276c1d4dac547bb09015fcd0df73825b32c5fad)) ##### Features - export `mergeConfig()` ([#3143](https://togithub.com/vuejs/vitepress/issues/3143)) ([a850786](https://togithub.com/vuejs/vitepress/commit/a850786a566606fda20cc4ed71b79e975307b52a)) ##### Performance Improvements - reduce duplicate rendering in localSearch ([#3170](https://togithub.com/vuejs/vitepress/issues/3170)) ([878f437](https://togithub.com/vuejs/vitepress/commit/878f4378cdee3c41f7643d9c7693bb607344d0c2))

Configuration

📅 Schedule: Branch creation - "before 10am on Saturday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

[ ] If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

killbasa / Amaneko

fix(deps): update all non-major dependencies #97

Release Notes

Configuration