Bump the npm_and_yarn group across 1 directory with 3 updates

[dependabot[bot]]

Bumps the npm_and_yarn group with 3 updates in the / directory: braces, undici and ws.

Updates braces from 3.0.2 to 3.0.3

Commits

• 74b2db2 3.0.3
• 88f1429 update eslint. lint, fix unit tests.
• 415d660 Snyk js braces 6838727 (#40)
• 190510f fix tests, skip 1 test in test/braces.expand
• 716eb9f readme bump
• a5851e5 Merge pull request #37 from coderaiser/fix/vulnerability
• 2092bd1 feature: braces: add maxSymbols (https://github.com/micromatch/braces/issues/...
• 9f5b4cf fix: vulnerability (https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727)
• 98414f9 remove funding file
• 665ab5d update keepEscaping doc (#27)
• Additional commits viewable in compare view

Updates undici from 6.17.0 to 6.19.2

Release notes

Sourced from undici's releases.

v6.19.2

What's Changed

• fix #3337 by @​KhafraDev in nodejs/undici#3338
• build: use husky as husky install is deprecated by @​jazelly in nodejs/undici#3340
• fix: interceptors.d.ts has no default export by @​Uzlopak in nodejs/undici#3332

Full Changelog: https://github.com/nodejs/undici/compare/v6.19.1...v6.19.2

v6.19.1

What's Changed

• don't append empty origin by @​KhafraDev in nodejs/undici#3335

Full Changelog: https://github.com/nodejs/undici/compare/v6.19.0...v6.19.1

v6.19.0

What's Changed

• build(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.3 by @​dependabot in nodejs/undici#3305
• build(deps): bump codecov/codecov-action from 4.3.1 to 4.4.1 by @​dependabot in nodejs/undici#3303
• build(deps): bump step-security/harden-runner from 2.7.1 to 2.8.0 by @​dependabot in nodejs/undici#3304
• build(deps): bump github/codeql-action from 3.25.3 to 3.25.7 by @​dependabot in nodejs/undici#3306
• build(deps): bump node from 9e8f45f to dd7e693 in /build by @​dependabot in nodejs/undici#3309
• build(deps): bump node from dd7e693 to e6d4495 in /build by @​dependabot in nodejs/undici#3313
• remove websocket experimental warning by @​KhafraDev in nodejs/undici#3311
• perf: optimization of request instantiation by @​tsctx in nodejs/undici#3107
• perf: convert object to params by @​DarkGL in nodejs/undici#3302
• build(deps-dev): bump borp from 0.14.0 to 0.15.0 by @​dependabot in nodejs/undici#3320
• build(deps-dev): bump c8 from 9.1.0 to 10.0.0 by @​dependabot in nodejs/undici#3321
• fix: add missing error classes to types by @​maxbeatty in nodejs/undici#3316
• export interceptor to type def file by @​jakecastelli in nodejs/undici#3318
• build(deps): bump node from e6d4495 to 075a5cc in /build by @​dependabot in nodejs/undici#3326
• doc: clearify the behaviour of bodyTimeout in the request by @​jakecastelli in nodejs/undici#3324
• feature: support pre-shared sessions by @​tastypackets in nodejs/undici#3325

New Contributors

• @​maxbeatty made their first contribution in nodejs/undici#3316
• @​jakecastelli made their first contribution in nodejs/undici#3318

Full Changelog: https://github.com/nodejs/undici/compare/v6.18.2...v6.19.0

v6.18.2

What's Changed

• don't use internal header state for cookies by @​KhafraDev in nodejs/undici#3295
• build(deps-dev): bump borp from 0.13.0 to 0.14.0 by @​dependabot in nodejs/undici#3298
• fix: retry on body support by @​metcoder95 in nodejs/undici#3294

Full Changelog: https://github.com/nodejs/undici/compare/v6.18.1...v6.18.2

... (truncated)

Commits

• 532b7b2 Bumped v6.19.2 (#3342)
• a7441d8 fix: interceptors.d.ts has no default export (#3332)
• 5dadb95 build: use husky as husky install is deprecated (#3340)
• 035524e fix #3337 (#3338)
• f6b9b44 Bumped v6.19.1 (#3336)
• 1573f69 don't append empty origin (#3335)
• 981fb3d Bumped v6.19.0
• 39869b2 feature: support pre-shared sessions (#3325)
• 7f54a24 doc: clearify the behaviour of bodyTimeout in the request (#3324)
• 9785b15 build(deps): bump node from e6d4495 to 075a5cc in /build (#3326)
• Additional commits viewable in compare view

Updates ws from 6.2.2 to 6.2.3

Release notes

Sourced from ws's releases.

6.2.3

Bug fixes

• Backported e55e5106 to the 6.x release line (eeb76d31).

Commits

• d87f3b6 [dist] 6.2.3
• eeb76d3 [security] Fix crash when the Upgrade header cannot be read (#2231)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/thirdweb-example/expo-starter/network/alerts).

[socket-security[bot]]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/cli-spinners@2.9.2	None	0	32.1 kB	sindresorhus
npm/escalade@3.1.2	filesystem	0	11.6 kB	lukeed
npm/get-caller-file@2.0.5	None	0	4.72 kB	stefanpenner
npm/ieee754@1.2.1	None	0	6.8 kB	feross
npm/inherits@2.0.4	None	0	3.96 kB	isaacs
npm/mime-db@1.52.0	None	0	206 kB	dougwilson
npm/object-assign@4.1.1	None	0	5.49 kB	sindresorhus
npm/os-tmpdir@1.0.2	None	0	3.06 kB	sindresorhus
npm/safer-buffer@2.1.2	None	0	42.3 kB	chalker
npm/signal-exit@3.0.7	None	0	9.96 kB	isaacs
npm/util-deprecate@1.0.2	None	0	5.48 kB	tootallnate

🚮 Removed packages: npm/@babel/plugin-proposal-class-properties@7.18.6, npm/@babel/plugin-proposal-nullish-coalescing-operator@7.18.6, npm/@babel/plugin-proposal-optional-chaining@7.21.0, npm/@babel/plugin-syntax-export-default-from@7.24.1, npm/@babel/plugin-syntax-flow@7.24.1, npm/@babel/plugin-transform-flow-strip-types@7.24.1, npm/@babel/plugin-transform-react-display-name@7.24.1, npm/@babel/plugin-transform-react-jsx@7.23.4, npm/is-docker@2.2.1, npm/is-wsl@2.2.0, npm/metro-config@0.80.9, npm/metro-core@0.80.9, npm/metro@0.80.9

View full report↗︎

[dependabot[bot]]

Superseded by #11.