build(deps): bump the prod-minor-versions group with 7 updates

[dependabot]

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

---

Bumps the prod-minor-versions group with 7 updates:

Package	From	To
@tanstack/react-query	5.45.1	5.55.4
i18next	23.11.5	23.14.0
markdown-to-jsx	7.4.7	7.5.0
next	14.2.3	14.2.8
next-seo	6.5.0	6.6.0
react-i18next	15.0.0	15.0.1
sharp	0.33.4	0.33.5

Updates @tanstack/react-query from 5.45.1 to 5.55.4

Release notes

Sourced from @​tanstack/react-query's releases.

v5.55.4

Version 5.55.4 - 9/9/24, 6:38 AM

Changes

Fix

• query-core: jsdoc of notifyManager (#8031) (2c1be7b) by @​manudeli

Packages

• @​tanstack/query-core@​5.55.4
• @​tanstack/query-broadcast-client-experimental@​5.55.4
• @​tanstack/query-persist-client-core@​5.55.4
• @​tanstack/query-sync-storage-persister@​5.55.4
• @​tanstack/react-query@​5.55.4
• @​tanstack/react-query-devtools@​5.55.4
• @​tanstack/react-query-persist-client@​5.55.4
• @​tanstack/react-query-next-experimental@​5.55.4
• @​tanstack/solid-query@​5.55.4
• @​tanstack/solid-query-devtools@​5.55.4
• @​tanstack/solid-query-persist-client@​5.55.4
• @​tanstack/svelte-query@​5.55.4
• @​tanstack/svelte-query-devtools@​5.55.4
• @​tanstack/svelte-query-persist-client@​5.55.4
• @​tanstack/vue-query@​5.55.4
• @​tanstack/vue-query-devtools@​5.55.4
• @​tanstack/angular-query-experimental@​5.55.4
• @​tanstack/query-async-storage-persister@​5.55.4
• @​tanstack/angular-query-devtools-experimental@​5.55.4

v5.55.3

Version 5.55.3 - 9/9/24, 6:16 AM

Changes

Fix

• replace JSON.stringify with replaceDeepEqual in structural sharing integrity check (#8030) (1bffc78) by jxom

Chore

• angular-query: remove redundant dependencies (#8032) (d58cf08) by Arnoud

Docs

• react-query: Update React Suspens Link in README.md (#8020) (9b78527) by Cyril Leclercq

Packages

... (truncated)

Commits

• acb5d37 release: v5.55.4
• 4cc4bd2 release: v5.55.3
• 9b78527 docs(react-query): Update React Suspens Link in README.md (#8020)
• 643abc0 release: v5.55.2
• f0c5022 refactor(query-core): move Override type to core (#7916)
• 4df469a release: v5.55.1
• 42715e7 refactor(react-query): split prefetch.ts (#8028)
• 353e4ad release: v5.55.0
• 48702e4 feat(react-query): add optional queryClient parameter to usePrefetchQuery (#8...
• c14a17d release: v5.54.1
• Additional commits viewable in compare view

Updates i18next from 23.11.5 to 23.14.0

Release notes

Sourced from i18next's releases.

v23.14.0

• If backend errors with retry flag, set internal state to 0, so reloadingResources should work 147

v23.13.0

• Cache output of getRule to optimize performance 2226

v23.12.7

• revert last optimization to address 2227

v23.12.6

• remove console.log statement 2227

v23.12.5

• try to optimize last fix for 2227

v23.12.4

• try to address 2227 without the removal of cached formatter for in-built formatters

v23.12.3

• fix: Using a comma in a formatter parameter 2225

v23.12.2

• fix: Nested translation resolution between languages uses the fallback language for nested translations 2216 by preserving issue fix "lng is undefined when formatter used in $t( )" 1938

v23.12.1

• Use explicit imports for utils 2212

v23.12.0

• feat: Add posibility to override keyPrefix for certain translation. 2211

Changelog

Sourced from i18next's changelog.

23.14.0

• If backend errors with retry flag, set internal state to 0, so reloadingResources should work 147

23.13.0

• Cache output of getRule to optimize performance 2226

23.12.7

• revert last optimization to address 2227

23.12.6

• remove console.log statement 2227

23.12.5

• try to optimize last fix for 2227

23.12.4

• try to address 2227 without the removal of cached formatter for in-built formatters

23.12.3

• fix: Using a comma in a formatter parameter 2225

23.12.2

• fix: Nested translation resolution between languages uses the fallback language for nested translations 2216 by preserving issue fix "lng is undefined when formatter used in $t( )" 1938

23.12.1

• Use explicit imports for utils 2212

23.12.0

• feat: Add posibility to override keyPrefix for certain translation. 2211

Commits

• 0083b3a 23.14.0
• 04e2fc9 If backend errors with retry flag, set internal state to 0, so reloadingResou...
• d7fcec6 23.13.0
• ffc0a52 build
• 3756cf6 Cache output of getRule to optimize performance (#2226)
• 202465a 23.12.7
• 66fad4c revert last optimization to address #2227
• 35d9757 23.12.6
• eb04454 remove console.log statement #2227
• 21fdd90 23.12.5
• Additional commits viewable in compare view

Updates markdown-to-jsx from 7.4.7 to 7.5.0

Release notes

Sourced from markdown-to-jsx's releases.

v7.5.0

Minor Changes

• 62a16f3: Allow modifying HTML attribute sanitization when options.sanitizer is passed by the composer.

  By default a lightweight URL sanitizer function is provided to avoid common attack vectors that might be placed into the href of an anchor tag, for example. The sanitizer receives the input, the HTML tag being targeted, and the attribute name. The original function is available as a library export called sanitizer.

  This can be overridden and replaced with a custom sanitizer if desired via options.sanitizer:

  // sanitizer in this situation would receive:
  // ('javascript:alert("foo")', 'a', 'href')
  <Markdown options={{ sanitizer: (value, tag, attribute) => value }}>
  {[foo](https://github.com/quantizor/markdown-to-jsx/blob/HEAD/javascript:alert(&quot;foo&quot;))}
  </Markdown>
  // or
  compiler('foo', {
  sanitizer: (value, tag, attribute) => value,
  })

Patch Changes

• 553a175: Replace RuleType enum with an object

Changelog

Sourced from markdown-to-jsx's changelog.

7.5.0

Minor Changes

• 62a16f3: Allow modifying HTML attribute sanitization when options.sanitizer is passed by the composer.

  By default a lightweight URL sanitizer function is provided to avoid common attack vectors that might be placed into the href of an anchor tag, for example. The sanitizer receives the input, the HTML tag being targeted, and the attribute name. The original function is available as a library export called sanitizer.

  This can be overridden and replaced with a custom sanitizer if desired via options.sanitizer:

  // sanitizer in this situation would receive:
  // ('javascript:alert("foo")', 'a', 'href')
  ;<Markdown options={{ sanitizer: (value, tag, attribute) => value }}>
  {[foo](https://github.com/quantizor/markdown-to-jsx/blob/main/javascript:alert(&quot;foo&quot;))}
  </Markdown>
  // or
  compiler('foo', {
  sanitizer: (value, tag, attribute) => value,
  })

Patch Changes

• 553a175: Replace RuleType enum with an object

Commits

• 3a04b9e Version Packages (#600)
• 62a16f3 feat: allow composer to adjust sanitization (#564) (#579)
• 553a175 refactor: replace RuleType enum with a const (#539) (#594)
• See full diff in compare view

Updates next from 14.2.3 to 14.2.8

Release notes

Sourced from next's releases.

v14.2.8

What's Changed

[!NOTE]
This release is backporting bug fixes and minor improvements. It does not include all pending features/changes on canary.

Support esmExternals in app directory

• Support esm externals in app router (#65041)
• Turbopack: Allow client components from foreign code in app routes (#64751)
• Turbopack: add support for esm externals in app dir (#64918)
• other related PRs: #66990 #66727 #66286 #65519

Reading cookies set in middleware in components and actions

• initialize ALS with cookies in middleware (#65008)
• fix middleware cookie initialization (#65820)
• ensure cookies set in middleware can be read in a server action (#67924)
• fix: merged middleware cookies should preserve options (#67956)

Metadata and icons

• support facebook-specific metadata (fb:app_id, fb:admins) in generateMetaData (#65713)
• Always collect static icons for all segments (#68712)
• Fix favicon merging with customized icons (#67982)
• Warn metadataBase missing in standalone mode or non vercel deployment (#66296)

Parallel routes fixes

• fix missing stylesheets when parallel routes are present (#69507)

Draft mode and edge improvements

• fix: unstable_cache should not cache new result in draft mode (#67772)
• Add draft mode flag for multi-zone (#68997)
• Fix edge preview props are not matched with cookie (#67779)
• other related PRs: #65426, #67787, #64946, #64313, #64370

next/image fixes

• Allow external image urls with _next/image pathname to be rendered via Image component (#69586)

Server actions improvements

... (truncated)

Commits

• 63b999c v14.2.8
• 55e4ef2 Allow external image urls with _next/image pathname to be rendered via Image ...
• d09b769 feat(turbopack): add support for esm externals in app dir (#64918)
• dafdc81 test: convert app-external.test.ts to nextTestSetup
• 2c80812 Turbopack: Allow client components from foreign code in app routes (#64751)
• 6473113 Improve SWC transform ID generation (#69183)
• 9c4efb9 Apply optimization for unused actions (#69178)
• 5eff016 refactor: create shared utils for mod resource (#69145)
• c8bde3e optimize server actions (#66523)
• 562df1f Ensure we match comment minify behavior between terser and swc (#68372)
• Additional commits viewable in compare view

Updates next-seo from 6.5.0 to 6.6.0

Release notes

Sourced from next-seo's releases.

v6.6.0

• feat: Allow QAPage to set URL for author (#1479) 1afb6e6
• Update README.md (#1431) 0030c7c
• Merge branch 'master' of github.com:garmeeh/next-seo 96b49b6
• Update README.md (#1351) 8e4545a

garmeeh/next-seo@v6.5.0...v6.6.0

Commits

• 2bc2791 v6.6.0
• 1afb6e6 feat: Allow QAPage to set URL for author (#1479)
• 0030c7c Update README.md (#1431)
• 96b49b6 Merge branch 'master' of github.com:garmeeh/next-seo
• 8e4545a Update README.md (#1351)
• See full diff in compare view

Updates react-i18next from 15.0.0 to 15.0.1

Changelog

Sourced from react-i18next's changelog.

15.0.1

• revert arrow function in class property to address this

Commits

• c82eb4b 15.0.1
• fc20c29 revert arrow function in class property to address #46e8ea5ff69325b73087811a2...
• See full diff in compare view

Updates sharp from 0.33.4 to 0.33.5

Changelog

Sourced from sharp's changelog.

v0.33.5 - 16th August 2024

• Upgrade to libvips v8.15.3 for upstream bug fixes.

• Add pageHeight and pages to response of multi-page output. #3411

• Ensure option to force use of a globally-installed libvips works correctly. #4111 @​project0

• Minimise use of engines property to improve yarn v1 support. #4130

• Ensure sharp.format.heif includes only AVIF when using prebuilt binaries. #4132

• Add support to recomb operation for 4x4 matrices. #4147 @​ton11797

• Expose PNG text chunks as comments metadata. #4157 @​nkeynes

• Expose optional precision and minAmplitude parameters of blur operation. #4168 #4172 @​marcosc90

• Ensure keepIccProfile avoids colour transformation where possible. #4186

• TypeScript: chromaSubsampling metadata is optional. #4191 @​DavidVaness

Commits

• fc32e0b Release v0.33.5
• 0546e48 Docs: changelog entry for #4191
• ab65b7a TypeScript: chromaSubsampling can be undefined (#4191)
• 2474bd4 Prerelease v0.33.5-rc.1
• ff2e689 Remove yarn v1 specifics from help text
• 6327f13 CI: Add yarn v1 to packaging tests
• f1e69a2 Prerelease v0.33.5-rc.0
• 3c14dbb Minimise use of engines property to improve yarn v1 support
• 82cebc3 Upgrade to libvips v8.15.3 for Linux ARMv6
• ad36fa0 Ensure emnapiInit function is exported
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions