build(deps): bump got, npm, update-notifier, ava and xo

[dependabot[bot]]

Bumps got to 12.5.3 and updates ancestor dependencies got, npm, update-notifier, ava and xo. These dependencies need to be updated together.

Updates got from 6.7.1 to 12.5.3

Release notes

Sourced from got's releases.

v12.5.3

• Fix abort event listeners not always being cleaned up (#2162) 3cc40b5

https://github.com/sindresorhus/got/compare/v12.5.2...v12.5.3

v12.5.2

• Improve TypeScript 4.9 compatibility (#2163) 39f83b6

https://github.com/sindresorhus/got/compare/v12.5.1...v12.5.2

v12.5.1

• Fix compatibility with TypeScript and ESM 3b3ea67
• Fix request body not being properly cached (#2150) 3e9d3af

https://github.com/sindresorhus/got/compare/v12.5.0...v12.5.1

v12.5.0

• Disable method rewriting on 307 and 308 status codes (#2145) e049e94
• Upgrade dependencies 8630815 f0ac0b3 4c3762a

https://github.com/sindresorhus/got/compare/v12.4.1...v12.5.0

v12.4.1

Fixes

• Fix options.context being not extensible b671480715dbbff908e9a385f5e714570c663cd7
• Don't emit uploadProgress after promise cancelation 693de217b030816f574d6e4cb505ee2e77b21c29

https://github.com/sindresorhus/got/compare/v12.4.0...v12.4.1

v12.4.0

Improvements

• Support FormData without known length (#2120) 850773c

Fixes

• Don't call beforeError hooks with HTTPError if the throwHttpErrors option is false (#2104) 3927348

https://github.com/sindresorhus/got/compare/v12.3.1...v12.4.0

v12.3.1

• Don't freeze signal when freezing Options (#2100) 43b1467

https://github.com/sindresorhus/got/compare/v12.3.0...v12.3.1

v12.3.0

• Add .off() method for events (#2092) 88056be

https://github.com/sindresorhus/got/compare/v12.2.0...v12.3.0

... (truncated)

Commits

• 2a4b4e7 12.5.3
• 3cc40b5 Fix abort event listeners not always being cleaned up (#2162)
• 5f278d7 12.5.2
• 39f83b6 Improve TypeScript 4.9 compatibility (#2163)
• 623229f Simplify CookieJar docs (#2155)
• 07afa3c Make GitHub Actions workflow more secure (#2154)
• a4482a5 12.5.1
• 3b3ea67 Fix compatibility with TypeScript and ESM
• 3e9d3af Fix request body not being properly cached (#2150)
• 6c7ebab Minor tweaks for ESM strict mode
• Additional commits viewable in compare view

Updates npm from 6.12.0 to 9.3.0

Release notes

Sourced from npm's releases.

libnpmhook: v9.0.1

9.0.1 (2022-12-07)

Dependencies

• 0a3fe00 #5933 minipass@4.0.0
• fee9b66 npm-registry-fetch@14.0.3

libnpmhook: v9.0.0

9.0.0 (2022-10-19)

Features

• 586e78d empty commit to trigger all workspace releases (@​lukekarrys)

libnpmhook: v9.0.0-pre.1

9.0.0-pre.1 (2022-10-19)

Dependencies

• aa01072 #5707 update the following dependencies

libnpmpublish: v7.0.6

7.0.6 (2022-12-07)

Dependencies

• 0a3fe00 #5933 minipass@4.0.0
• cf0a174 ssri@10.0.1
• fee9b66 npm-registry-fetch@14.0.3
• 875bd56 npm-package-arg@10.1.0
• Workspace: libnpmpack@5.0.6

libnpmpublish: v7.0.5

7.0.5 (2022-11-30)

Dependencies

• Workspace: libnpmpack@5.0.5

libnpmpublish: v7.0.4

7.0.4 (2022-11-16)

Dependencies

• Workspace: libnpmpack@5.0.4

libnpmpublish: v7.0.3

7.0.3 (2022-11-09)

... (truncated)

Changelog

Sourced from npm's changelog.

9.3.0 (2023-01-12)

Features

• 753b98e #5261 rootless workspace init provides suggestion (@​fritzy)

Bug Fixes

• cf175fb #6044 default auth-type to legacy if otp is configured (#6044) (@​wraithgar)
• 2383deb #6037 clean urls from arborist, owner, and ping commands (#6037) (@​lukekarrys)
• 69f5ff8 view: convert command to use output instead of console (@​lukekarrys)
• dc52222 init: write package.json workspaces paths with / separators (@​lukekarrys)
• 31af1aa refactor help to use @npmcli/promise-spawn (@​lukekarrys)
• 669ef94 fund: correctly parse and use which config (@​lukekarrys)
• 72e6d6f generate workspace support for docs pages (@​lukekarrys)
• 450e50f evaluate configs in command class (@​lukekarrys)
• 28ec922 #5946 replace rimraf with fs.rm (@​lukekarrys)

Documentation

• f0038e5 #6048 missing backtick in synopsis of npm init (#5837) (#6048) (@​Peallyz)
• ca8ff00 #6045 update outdated file path to definitions.js (@​ericmutta)
• fe9debd #6038 fix typos in definitions.js (#6038) (@​lukekarrys, @​ericmutta)
• fa27aca #6018 fix typo in removal.md (@​ericmutta)
• 82f69d9 #6026 fix typo in registry.md (@​ericmutta)

Dependencies

• ec09474 #5945 minipass-fetch@3.0.1
• Workspace: @npmcli/arborist@6.1.6
• Workspace: @npmcli/config@6.1.1
• Workspace: libnpmdiff@5.0.7
• Workspace: libnpmexec@5.0.7
• Workspace: libnpmfund@4.0.7
• Workspace: libnpmpack@5.0.7

9.2.0 (2022-12-07)

Features

• cf57ffa #5888 discrete npm doctor commands (#5888) (@​wraithgar)

Bug Fixes

• dfd5d46 #5932 ignore implicit workspaces for completion (#5932) (@​wraithgar)

Dependencies

• 2f2b146 #5936 npm-packlist@7.0.4 (#5936)
• 372d158 #5935 minimatch@5.1.1 (#5935)

... (truncated)

Commits

• 4d27592 chore: release 9.3.0
• 29f9942 chore: add node release integration workflows (#6049)
• f0038e5 docs: missing backtick in synopsis of npm init (#5837) (#6048)
• cf175fb fix: default auth-type to legacy if otp is configured (#6044)
• ca8ff00 docs: update outdated file path to definitions.js
• b584af0 fix: remove unneeded param default
• 2ba1171 fix: streamline workspace loading code
• 35c94e0 chore: remove coverage map
• 2383deb fix: clean urls from arborist, owner, and ping commands (#6037)
• fe9debd docs: fix typos in definitions.js (#6038)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by lukekarrys, a new releaser for npm since your current version.

Updates update-notifier from 3.0.1 to 6.0.2

Release notes

Sourced from update-notifier's releases.

v6.0.2

• Fix license d152f85

https://github.com/yeoman/update-notifier/compare/v6.0.1...v6.0.2

v6.0.1

• Update dependencies (#222) 3f7c9f3

https://github.com/yeoman/update-notifier/compare/v6.0.0...v6.0.1

v6.0.0

Breaking

• Require Node.js 14 9183541
• This package is now pure ESM. Please read this.

https://github.com/yeoman/update-notifier/compare/v5.1.0...v6.0.0

v5.1.0

• Upgrade dependencies 73c391b

https://github.com/yeoman/update-notifier/compare/v5.0.1...v5.1.0

v5.0.1

• Update dependencies 9e2b772

https://github.com/yeoman/update-notifier/compare/v5.0.0...v5.0.1

v5.0.0

Breaking

• Require Node.js 10 5b440c2

Fixes

• Don't suggest to upgrade to lower version (#192) 3dfe42d

https://github.com/yeoman/update-notifier/compare/v4.1.1...v5.0.0

v4.1.1

• Improve vertical alignment of the notifier output (#183) f42fc8f

https://github.com/yeoman/update-notifier/compare/v4.1.0...v4.1.1

v4.1.0

• Add template support for the message option (#175) adbeb6e

https://github.com/yeoman/update-notifier/compare/v4.0.0...v4.1.0

v4.0.0

... (truncated)

Commits

• 3b6b9b1 6.0.2
• d152f85 Fix license
• 020613b 6.0.1
• 3f7c9f3 Update dependencies (#222)
• 311557e 6.0.0
• 9183541 Require Node.js 14 and move to ESM
• 3fdb218 5.1.0
• 73c391b Upgrade dependencies
• 0a6027e Move to GitHub Actions
• d8fa601 Rename master branch to main
• Additional commits viewable in compare view

Updates ava from 2.4.0 to 5.1.0

Release notes

Sourced from ava's releases.

v5.1.0

What's Changed

• Output logs for tests that remain pending when AVA exits by @​kevo1ution in avajs/ava#3125
• Check for --config file extensions after they fail to load, allowing custom loaders by @​panva in avajs/ava#3135

New Contributors

• @​kevo1ution made their first contribution in avajs/ava#3125
• @​panva made their first contribution in avajs/ava#3135

Full Changelog: https://github.com/avajs/ava/compare/v5.0.1...v5.1.0

v5.0.1

Despite the major version bump this is a relatively minor release. Node.js 12 is no longer supported. The type definitions are now distributed to be compatible with TypeScript 4.7 or newer.

npm install --save-dev ava

Breaking Changes

• AVA now requires Node.js 14.19, 16.15 or 18. avajs/ava#3043
• Type definition distribution assumes at least TypeScript 4.7. avajs/ava#3041
• We're now exporting types rather than interfaces. avajs/ava#3096

Improvements

• Detect process.exit() called from tests by @​gibson042 in avajs/ava#3080
• Improve test result accessibility by @​gibson042 in avajs/ava#3082
• Parse for line numbers with latest supported ECMA version by @​novemberborn in avajs/ava#3063
• Work around os.cpus() returning an empty array on unsupported platforms by @​catink123 in avajs/ava#3095
• Count timeouts separately from the timed out tests by @​novemberborn in avajs/ava#3099
• Cap idle timeouts to the maximum possible value by @​creestor in avajs/ava#3100

New Contributors

• @​Prinzhorn made their first contribution in avajs/ava#3073
• @​catink123 made their first contribution in avajs/ava#3095
• @​creestor made their first contribution in avajs/ava#3100
• @​DavidVujic made their first contribution in avajs/ava#3109

Full Changelog: https://github.com/avajs/ava/compare/v4.3.3...v5.0.1

v5.0.0

Despite the major version bump this is a relatively minor release. Node.js 12 is no longer supported. The type definitions are now distributed to be compatible with TypeScript 4.7 or newer.

It's available as a pre-release under the next tag for the next few weeks:

npm install --save-dev ava@next

... (truncated)

Commits

• 4ecfe7d 5.1.0
• 609b307 Update dependencies
• 647d3e1 Check for --config file extensions after they fail to load, allowing custom l...
• 9206928 Output logs for tests that remain pending when AVA exits
• 136dde3 Update reporter logs for latest Node.js 16
• 7007f13 5.0.1
• 48dcafa Update dependencies; more type tweaks
• 3ebe65c Re-organize types for maximum compatibility
• 2d3f394 Update to the browser testing recipe to use jsdom directly
• 52b2270 Cap idle timeouts to the maximum possible value
• Additional commits viewable in compare view

Updates xo from 0.29.1 to 0.53.1

Release notes

Sourced from xo's releases.

v0.53.1

• Improve performance (#697) 9bee815

https://github.com/xojs/xo/compare/v0.53.0...v0.53.1

v0.53.0

Breaking

• Require Node.js 14 91d10d1
• TypeScript: It will now use inline type imports when auto-fixing https://github.com/xojs/eslint-config-xo-typescript/commit/e41f4a4032882da4f19d4ff69d303f8a1f2e127d

New rules

• no-empty-static-block
• no-new-native-nonconstructor
• unicorn/no-unnecessary-await
• unicorn/switch-case-braces
• unicorn/prefer-logical-operator-over-ternary
• unicorn/prefer-event-target
• @typescript-eslint/no-unsafe-declaration-merging

https://github.com/xojs/xo/compare/v0.52.4...v0.53.0

v0.52.4

• Fix a bug with relative extends (#686) e69a192

https://github.com/xojs/xo/compare/v0.52.3...v0.52.4

v0.52.3

• Fix compatibility problem with Windows (#687) a608bf1

https://github.com/xojs/xo/compare/v0.52.2...v0.52.3

v0.52.2

• Fix tsconfig resolution quirks (#683) 4cf8b05

https://github.com/xojs/xo/compare/v0.52.1...v0.52.2

v0.52.1

• Ensure tsconfig lookups work as expected (#680) de5f878

https://github.com/xojs/xo/compare/v0.52.0...v0.52.1

v0.52.0

New rules

• @typescript-eslint/consistent-type-exports
• @typescript-eslint/consistent-type-imports
• @typescript-eslint/consistent-generic-constructors
• @typescript-eslint/consistent-type-definitions

... (truncated)

Commits

• 613011b 0.53.1
• 9bee815 Improve performance (#697)
• b15cbfe Fix CI
• 100dc9b 0.53.0
• 91d10d1 Require Node.js 14
• e678209 Update link to n ESLint plugin (#696)
• db6e207 0.52.4
• e69a192 Fix a bug with relative extends (#686)
• f9c7db9 Update XO badge (#692)
• 92b3a3d Replace link to node ESLint plugin with n in readme (#690)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/semantic-release/cli/network/alerts).

[dependabot[bot]]

Superseded by #382.