build(deps-dev): bump @typescript-eslint/eslint-plugin from 5.62.0 to 8.14.0

[dependabot[bot]]

Bumps @typescript-eslint/eslint-plugin from 5.62.0 to 8.14.0.

Release notes

Sourced from @​typescript-eslint/eslint-plugin's releases.

v8.14.0

8.14.0 (2024-11-11)

🚀 Features

• eslint-plugin: [no-confusing-void-expression] add an option to ignore voidvoid (#10067)
• eslint-plugin: [await-thenable] report unnecessary await using statements (#10209)

🩹 Fixes

• deps: update dependency eslint to v9.14.0 (#10309)
• deps: update docusaurus monorepo to v3.6.0 (#10319)
• eslint-plugin: [no-unnecessary-condition] improve error message for literal comparisons (#10194)
• eslint-plugin: [no-misused-promises] improve report loc for methods (#10216)
• scope-manager: fix asserted increments not being marked as write references (#10271)

❤️ Thank You

• Gyumong @​Gyumong
• Jan Ochwat @​janek515
• Kirk Waiblinger @​kirkwaiblinger
• Ronen Amiel

You can read about our versioning strategy and releases on our website.

v8.13.0

8.13.0 (2024-11-04)

🚀 Features

• add options property to ImportExpression node (#10255)
• eslint-plugin: disable no-class-assign rule in eslint-recommended config (#10250)
• eslint-plugin: [prefer-nullish-coalescing] add option ignoreBooleanCoercion (#9924)
• eslint-plugin: [only-throw-error] add allow option (#10221)

🩹 Fixes

• deps: update dependency @​eslint-community/regexpp to v4.12.1 (#10269)
• eslint-plugin: [no-unnecessary-condition] falsey bigint should be falsey (#10205)
• eslint-plugin: [no-deprecated] report on deprecated variables used inside dynamic imports (#10261)
• eslint-plugin: [no-deprecated] report when exported class implements/extends deprecated entity (#10259)
• eslint-plugin: [consistent-type-definitions] don't leave trailing parens when fixing type to interface (#10235)
• eslint-plugin: [switch-exhaustiveness-check] add support for covering a missing property with undefined (#10232)
• types: parent property type annotation in the ImportAttribute node (#10258)
• utils: allow an array for the values of SharedConfig (#10217)

❤️ Thank You

• auvred @​auvred
• Kim Sang Du @​developer-bandi

... (truncated)

Changelog

Sourced from @​typescript-eslint/eslint-plugin's changelog.

8.14.0 (2024-11-11)

🚀 Features

• eslint-plugin: [await-thenable] report unnecessary await using statements (#10209)
• eslint-plugin: [no-confusing-void-expression] add an option to ignore voidvoid (#10067)

🩹 Fixes

• scope-manager: fix asserted increments not being marked as write references (#10271)
• eslint-plugin: [no-misused-promises] improve report loc for methods (#10216)
• eslint-plugin: [no-unnecessary-condition] improve error message for literal comparisons (#10194)

❤️ Thank You

• Gyumong @​Gyumong
• Jan Ochwat @​janek515
• Kirk Waiblinger @​kirkwaiblinger
• Ronen Amiel

You can read about our versioning strategy and releases on our website.

8.13.0 (2024-11-04)

🚀 Features

• eslint-plugin: [only-throw-error] add allow option (#10221)
• eslint-plugin: [prefer-nullish-coalescing] add option ignoreBooleanCoercion (#9924)
• eslint-plugin: disable no-class-assign rule in eslint-recommended config (#10250)

🩹 Fixes

• eslint-plugin: [switch-exhaustiveness-check] add support for covering a missing property with undefined (#10232)
• eslint-plugin: [consistent-type-definitions] don't leave trailing parens when fixing type to interface (#10235)
• eslint-plugin: [no-deprecated] report when exported class implements/extends deprecated entity (#10259)
• eslint-plugin: [no-deprecated] report on deprecated variables used inside dynamic imports (#10261)
• eslint-plugin: [no-unnecessary-condition] falsey bigint should be falsey (#10205)

❤️ Thank You

• auvred @​auvred
• Kim Sang Du @​developer-bandi
• Kirk Waiblinger @​kirkwaiblinger
• Mark de Dios @​peanutenthusiast
• Ronen Amiel
• YeonJuan @​yeonjuan

You can read about our versioning strategy and releases on our website.

8.12.2 (2024-10-29)

... (truncated)

Commits

• 16fba0a chore(release): publish 8.14.0
• 42d275c fix(scope-manager): fix asserted increments not being marked as write referen...
• d27a9ac fix(eslint-plugin): [no-misused-promises] improve report loc for methods (#10...
• c13b6b4 chore: fix lint and build website errors (#10288)
• 5b2ebcd feat(eslint-plugin): [await-thenable] report unnecessary await using statem...
• 22f7f25 fix(eslint-plugin): [no-unnecessary-condition] improve error message for lite...
• e2e9ffc feat(eslint-plugin): [no-confusing-void-expression] add an option to ignore v...
• ac1f632 chore(release): publish 8.13.0
• f83a591 fix(eslint-plugin): [switch-exhaustiveness-check] add support for covering a ...
• 3b97b55 chore: enable eslint-plugin-perfectionist on the rest of the repo (#10189)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions[bot]]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Scorecard details

Package	Version	Score	Details
npm/@eslint-community/eslint-utils	4.4.1	Unknown	Unknown
npm/@eslint-community/regexpp	4.12.1	Unknown	Unknown
npm/@eslint/config-array	0.18.0	Unknown	Unknown
npm/@eslint/core	0.7.0	Unknown	Unknown
npm/@eslint/eslintrc	3.1.0	:green_circle: 5.9	Details Check Score Reason Code-Review :green_circle: 9 Found 20/21 approved changesets -- score normalized to 9 Maintained :warning: 2 2 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 2 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected Fuzzing :warning: 0 project is not fuzzed Security-Policy :green_circle: 10 security policy file detected Packaging :green_circle: 10 packaging workflow detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0
npm/@eslint/js	9.14.0	:green_circle: 6.9	Details Check Score Reason Code-Review :green_circle: 7 Found 22/30 approved changesets -- score normalized to 7 Maintained :green_circle: 10 30 commit(s) and 16 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases :warning: -1 no releases found Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Packaging :warning: -1 packaging workflow not detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Security-Policy :green_circle: 10 security policy file detected Fuzzing :warning: 0 project is not fuzzed SAST :green_circle: 10 SAST tool is run on all commits
npm/@eslint/object-schema	2.1.4	Unknown	Unknown
npm/@eslint/plugin-kit	0.2.2	Unknown	Unknown
npm/@humanfs/core	0.19.1	Unknown	Unknown
npm/@humanfs/node	0.16.6	Unknown	Unknown
npm/@humanwhocodes/module-importer	1.0.1	Unknown	Unknown
npm/@humanwhocodes/retry	0.3.1	Unknown	Unknown
npm/@humanwhocodes/retry	0.4.1	Unknown	Unknown
npm/@types/estree	1.0.6	:green_circle: 6.9	Details Check Score Reason Code-Review :green_circle: 8 Found 25/30 approved changesets -- score normalized to 8 Maintained :green_circle: 10 30 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :green_circle: 8 dependency not pinned by hash detected -- score normalized to 8 Fuzzing :warning: 0 project is not fuzzed
npm/@types/json-schema	7.0.15	:green_circle: 6.9	Details Check Score Reason Code-Review :green_circle: 8 Found 25/30 approved changesets -- score normalized to 8 Maintained :green_circle: 10 30 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :green_circle: 8 dependency not pinned by hash detected -- score normalized to 8 Fuzzing :warning: 0 project is not fuzzed
npm/@typescript-eslint/eslint-plugin	8.14.0	:green_circle: 5.2	Details Check Score Reason Code-Review :green_circle: 7 Found 18/23 approved changesets -- score normalized to 7 Maintained :green_circle: 10 30 commit(s) and 26 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing :warning: 0 project is not fuzzed SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities :warning: 0 22 existing vulnerabilities detected
npm/@typescript-eslint/scope-manager	8.14.0	:green_circle: 5.2	Details Check Score Reason Code-Review :green_circle: 7 Found 18/23 approved changesets -- score normalized to 7 Maintained :green_circle: 10 30 commit(s) and 26 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing :warning: 0 project is not fuzzed SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities :warning: 0 22 existing vulnerabilities detected
npm/@typescript-eslint/type-utils	8.14.0	:green_circle: 5.2	Details Check Score Reason Code-Review :green_circle: 7 Found 18/23 approved changesets -- score normalized to 7 Maintained :green_circle: 10 30 commit(s) and 26 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing :warning: 0 project is not fuzzed SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities :warning: 0 22 existing vulnerabilities detected
npm/@typescript-eslint/types	8.14.0	:green_circle: 5.2	Details Check Score Reason Code-Review :green_circle: 7 Found 18/23 approved changesets -- score normalized to 7 Maintained :green_circle: 10 30 commit(s) and 26 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing :warning: 0 project is not fuzzed SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities :warning: 0 22 existing vulnerabilities detected
npm/@typescript-eslint/typescript-estree	8.14.0	:green_circle: 5.2	Details Check Score Reason Code-Review :green_circle: 7 Found 18/23 approved changesets -- score normalized to 7 Maintained :green_circle: 10 30 commit(s) and 26 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing :warning: 0 project is not fuzzed SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities :warning: 0 22 existing vulnerabilities detected
npm/@typescript-eslint/utils	8.14.0	:green_circle: 5.2	Details Check Score Reason Code-Review :green_circle: 7 Found 18/23 approved changesets -- score normalized to 7 Maintained :green_circle: 10 30 commit(s) and 26 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing :warning: 0 project is not fuzzed SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities :warning: 0 22 existing vulnerabilities detected
npm/@typescript-eslint/visitor-keys	8.14.0	:green_circle: 5.2	Details Check Score Reason Code-Review :green_circle: 7 Found 18/23 approved changesets -- score normalized to 7 Maintained :green_circle: 10 30 commit(s) and 26 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing :warning: 0 project is not fuzzed SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities :warning: 0 22 existing vulnerabilities detected
npm/acorn	8.14.0	:green_circle: 5.4	Details Check Score Reason Maintained :green_circle: 10 11 commit(s) and 9 issue activity found in the last 90 days -- score normalized to 10 Code-Review :green_circle: 4 Found 11/26 approved changesets -- score normalized to 4 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected Signed-Releases :warning: -1 no releases found Token-Permissions :green_circle: 10 GitHub workflow tokens follow principle of least privilege Packaging :warning: -1 packaging workflow not detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected License :warning: 0 license file not detected Branch-Protection :warning: 0 branch protection not enabled on development/release branches Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Security-Policy :warning: 0 security policy file not detected Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Fuzzing :warning: 0 project is not fuzzed
npm/eslint	9.14.0	:green_circle: 6.9	Details Check Score Reason Code-Review :green_circle: 7 Found 22/30 approved changesets -- score normalized to 7 Maintained :green_circle: 10 30 commit(s) and 16 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases :warning: -1 no releases found Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Packaging :warning: -1 packaging workflow not detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Security-Policy :green_circle: 10 security policy file detected Fuzzing :warning: 0 project is not fuzzed SAST :green_circle: 10 SAST tool is run on all commits
npm/eslint-scope	8.2.0	Unknown	Unknown
npm/eslint-visitor-keys	4.2.0	Unknown	Unknown
npm/espree	10.3.0	Unknown	Unknown
npm/file-entry-cache	8.0.0	:green_circle: 4.2	Details Check Score Reason Code-Review :warning: 0 Found 0/14 approved changesets -- score normalized to 0 Maintained :green_circle: 8 10 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 8 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Binary-Artifacts :green_circle: 10 no binaries found in the repo Packaging :warning: -1 packaging workflow not detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Branch-Protection :warning: 0 branch protection not enabled on development/release branches Security-Policy :warning: 0 security policy file not detected Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected Fuzzing :warning: 0 project is not fuzzed SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0
npm/find-up	5.0.0	:green_circle: 4.3	Details Check Score Reason Code-Review :green_circle: 3 Found 10/30 approved changesets -- score normalized to 3 Maintained :warning: 0 0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Packaging :warning: -1 packaging workflow not detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Security-Policy :green_circle: 10 security policy file detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Branch-Protection :warning: 0 branch protection not enabled on development/release branches Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected Signed-Releases :warning: -1 no releases found SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0
npm/flat-cache	4.0.1	:green_circle: 4	Details Check Score Reason Code-Review :warning: 1 Found 2/14 approved changesets -- score normalized to 1 Maintained :warning: 0 0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Packaging :warning: -1 packaging workflow not detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Binary-Artifacts :green_circle: 10 no binaries found in the repo Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Branch-Protection :warning: 0 branch protection not enabled on development/release branches Fuzzing :warning: 0 project is not fuzzed Security-Policy :warning: 0 security policy file not detected Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected SAST :green_circle: 8 SAST tool is not run on all commits -- score normalized to 8
npm/flatted	3.3.1	:green_circle: 3.5	Details Check Score Reason Code-Review :warning: 0 Found 1/24 approved changesets -- score normalized to 0 Maintained :warning: 0 0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Packaging :warning: -1 packaging workflow not detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Branch-Protection :warning: 0 branch protection not enabled on development/release branches Pinned-Dependencies :green_circle: 3 dependency not pinned by hash detected -- score normalized to 3 Security-Policy :warning: 0 security policy file not detected Fuzzing :warning: 0 project is not fuzzed SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities :green_circle: 9 1 existing vulnerabilities detected
npm/globals	14.0.0	:green_circle: 5.4	Details Check Score Reason Code-Review :green_circle: 4 Found 11/24 approved changesets -- score normalized to 4 Maintained :green_circle: 10 10 commit(s) and 6 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Security-Policy :green_circle: 10 security policy file detected Packaging :warning: -1 packaging workflow not detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Branch-Protection :warning: 0 branch protection not enabled on development/release branches Fuzzing :warning: 0 project is not fuzzed Signed-Releases :warning: -1 no releases found Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0
npm/ignore	5.3.2	:green_circle: 4.3	Details Check Score Reason Code-Review :warning: 0 Found 1/20 approved changesets -- score normalized to 0 Maintained :green_circle: 10 13 commit(s) and 4 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Packaging :warning: -1 packaging workflow not detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Branch-Protection :warning: 0 branch protection not enabled on development/release branches Signed-Releases :warning: -1 no releases found Security-Policy :warning: 0 security policy file not detected Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected Fuzzing :warning: 0 project is not fuzzed SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0
npm/keyv	4.5.4	:green_circle: 5.6	Details Check Score Reason Code-Review :warning: 0 Found 1/30 approved changesets -- score normalized to 0 Maintained :green_circle: 10 30 commit(s) and 15 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Security-Policy :green_circle: 10 security policy file detected Packaging :warning: -1 packaging workflow not detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Signed-Releases :warning: -1 no releases found Fuzzing :warning: 0 project is not fuzzed Branch-Protection :warning: 0 branch protection not enabled on development/release branches Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 SAST :green_circle: 10 SAST tool is run on all commits
npm/locate-path	6.0.0	:green_circle: 4.2	Details Check Score Reason Code-Review :warning: 2 Found 8/29 approved changesets -- score normalized to 2 Maintained :warning: 0 0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Branch-Protection :warning: 0 branch protection not enabled on development/release branches Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected Signed-Releases :warning: -1 no releases found SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0
npm/minimatch	9.0.5	:green_circle: 3.9	Details Check Score Reason Code-Review :warning: 1 Found 3/30 approved changesets -- score normalized to 1 Maintained :warning: 0 0 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 0 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Binary-Artifacts :green_circle: 10 no binaries found in the repo Packaging :warning: -1 packaging workflow not detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Fuzzing :warning: 0 project is not fuzzed Security-Policy :warning: 0 security policy file not detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
npm/p-limit	3.1.0	:green_circle: 4.2	Details Check Score Reason Code-Review :warning: 2 Found 7/30 approved changesets -- score normalized to 2 Maintained :warning: 0 1 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Packaging :warning: -1 packaging workflow not detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Security-Policy :green_circle: 10 security policy file detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Branch-Protection :warning: 0 branch protection not enabled on development/release branches Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected Signed-Releases :warning: -1 no releases found Fuzzing :warning: 0 project is not fuzzed SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0
npm/p-locate	5.0.0	:green_circle: 4.2	Details Check Score Reason Code-Review :warning: 2 Found 5/22 approved changesets -- score normalized to 2 Maintained :warning: 0 0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Packaging :warning: -1 packaging workflow not detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Binary-Artifacts :green_circle: 10 no binaries found in the repo Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Security-Policy :green_circle: 10 security policy file detected Branch-Protection :warning: 0 branch protection not enabled on development/release branches Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected Signed-Releases :warning: -1 no releases found SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0
npm/semver	7.6.3	:green_circle: 6.7	Details Check Score Reason Code-Review :green_circle: 10 all changesets reviewed Maintained :green_circle: 5 5 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 5 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Security-Policy :green_circle: 10 security policy file detected Packaging :warning: -1 packaging workflow not detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected Fuzzing :warning: 0 project is not fuzzed SAST :green_circle: 9 SAST tool detected but not run on all commits
npm/ts-api-utils	1.4.0	Unknown	Unknown
npm/@typescript-eslint/eslint-plugin	^8.14.0	:green_circle: 5.2	Details Check Score Reason Code-Review :green_circle: 7 Found 18/23 approved changesets -- score normalized to 7 Maintained :green_circle: 10 30 commit(s) and 26 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing :warning: 0 project is not fuzzed SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities :warning: 0 22 existing vulnerabilities detected

Scanned Files

• package-lock.json
• package.json

[dependabot[bot]]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.