[JS] bump: (deps-dev): Bump the development group in /js with 3 updates

[dependabot[bot]]

Bumps the development group in /js with 3 updates: eslint-plugin-mocha, typescript and botbuilder-core.

Updates eslint-plugin-mocha from 10.4.2 to 10.4.3

Release notes

Sourced from eslint-plugin-mocha's releases.

10.4.3

Bug Fixes

• Fix support for ESLint versions < 8.40.0

Commits

• 756fa03 Remove node v14 from build matrix
• ddd614c Run tests against latest ESLint 8.x version
• e19e93e Fix support for ESLint versions < 8.40.0
• See full diff in compare view

Updates typescript from 5.4.4 to 5.4.5

Release notes

Sourced from typescript's releases.

TypeScript 5.4.5

For release notes, check out the release announcement.

For the complete list of fixed issues, check out the

• fixed issues query for Typescript 5.4.0 (Beta).
• fixed issues query for Typescript 5.4.1 (RC).
• fixed issues query for Typescript 5.4.2 (Stable).
• fixed issues query for Typescript 5.4.3 (Stable).
• fixed issues query for Typescript 5.4.4 (Stable).
• fixed issues query for Typescript 5.4.5 (Stable).

Downloads are available on:

• NuGet package

Commits

• 27bcd4c Update LKG
• 9f33bf1 🤖 Pick PR #58098 (Fix constraints of nested homomorph...) into release-5.4 (#...
• 71b2f84 Bump version to 5.4.5 and LKG
• 892936f 🤖 Pick PR #58083 (Don't propagate partial union/inter...) into release-5.4 (#...
• 38a7c05 release-5.4: Always set node-version for setup-node (#58117)
• b754fc3 🤖 Pick PR #57778 (fix type import check for default-i...) into release-5.4 (#...
• See full diff in compare view

Updates botbuilder-core from 4.22.1 to 4.22.2

Release notes

Sourced from botbuilder-core's releases.

Bot Framework JS SDK 4.22.2

This is the April 2024 JS SDK patch release. This release contains minor bug fixes and security updates.

What's Changed

• fix: add content type header by @​XVincentX in microsoft/botbuilder-js#4587
• fix: #4544 JwtTokenExtractor.getIdentity:err! FetchError: request to https://login.botframework.com/v1/.well-known/openidconfiguration by @​ceciliaavila in microsoft/botbuilder-js#4583
• bump: Update swagger-client to stop using lodash-compat by @​JhontSouth in microsoft/botbuilder-js#4604
• fix: Removed Copyright from generated code by @​tracyboehrer in microsoft/botbuilder-js#4612
• fix: #4584 ChannelAccount cannot accept extensible properties by @​JhontSouth in microsoft/botbuilder-js#4618
• bump: Update follow-redirects to ^1.15.4 by @​JhontSouth in microsoft/botbuilder-js#4617
• bump: Update @​azure/msal-node and @​azure/msal-browser by @​JhontSouth in microsoft/botbuilder-js#4619
• bump: undici from 5.28.2 to 5.28.3 by @​dependabot in microsoft/botbuilder-js#4620
• bump: axios from 0.21.1 to 0.28.0 by @​dependabot in microsoft/botbuilder-js#4621
• bump: ip from 1.1.5 to 1.1.9 by @​dependabot in microsoft/botbuilder-js#4622
• bump: ip from 1.1.5 to 1.1.9 in /testing/browser-functional/browser-echo-bot by @​dependabot in microsoft/botbuilder-js#4623
• bump: es5-ext from 0.10.53 to 0.10.63 by @​dependabot in microsoft/botbuilder-js#4624
• fix: [botframework-connector] Use HashSet instead of string array for endorsement by @​crdev13 in microsoft/botbuilder-js#4526
• bump: tar to 6.1.9 by @​tracyboehrer in microsoft/botbuilder-js#4627
• bump: axios to 0.21.2 by @​tracyboehrer in microsoft/botbuilder-js#4628
• chore: Removed autorest gen related by @​tracyboehrer in microsoft/botbuilder-js#4629
• bump: axios and ws by @​tracyboehrer in microsoft/botbuilder-js#4630
• bump: follow-redirects from 1.15.5 to 1.15.6 in /testing/browser-functional/browser-echo-bot by @​dependabot in microsoft/botbuilder-js#4633
• bump: follow-redirects from 1.15.5 to 1.15.6 by @​dependabot in microsoft/botbuilder-js#4634
• fix: #4440[Bot node.js] Compile error for accessing "conversation" and "organizer" fields for get meeting details bot API by @​ceciliaavila in microsoft/botbuilder-js#4442
• bump: express from 4.18.2 to 4.19.2 in /testing/browser-functional/browser-echo-bot by @​dependabot in microsoft/botbuilder-js#4638
• bump: express from 4.17.3 to 4.19.2 by @​dependabot in microsoft/botbuilder-js#4637
• getValue parity by @​tracyboehrer in microsoft/botbuilder-js#4639
• chore: Moved @​types/jsonwebtoken to dependencies by @​tracyboehrer in microsoft/botbuilder-js#4640
• bump: undici from 5.28.3 to 5.28.4 by @​dependabot in microsoft/botbuilder-js#4642

Full Changelog: https://github.com/microsoft/botbuilder-js/compare/4.22.1...4.22.2

Commits

• e07847c Merge branch 'main' into releases/4.22
• 2f45467 chore(deps): bump undici from 5.28.3 to 5.28.4 (#4642)
• 606dde4 chore: Moved @​types/jsonwebtoken to dependencies (#4640)
• 7ceb965 Tracyboehrer/get value parity (#4639)
• 6782cdd chore(deps): bump express from 4.17.3 to 4.19.2 (#4637)
• 093d960 chore(deps): bump express (#4638)
• f487de2 fix: #4440[Bot node.js] Compile error for accessing "conversation" and "org...
• d7b0577 chore(deps): bump follow-redirects from 1.15.5 to 1.15.6 (#4634)
• 7e48ea8 chore(deps): bump follow-redirects (#4633)
• 2628f0b Merge branch 'main' into releases/4.22
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions

[dependabot[bot]]

Looks like these dependencies are updatable in another way, so this is no longer needed.