Update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence	Type	Update
@formkit/vue (source)	1.6.0 -> 1.6.7					dependencies	patch
@fortawesome/fontawesome-svg-core (source)	6.5.1 -> 6.6.0					dependencies	minor
@fortawesome/free-brands-svg-icons (source)	6.5.1 -> 6.6.0					dependencies	minor
@fortawesome/free-regular-svg-icons (source)	6.5.1 -> 6.6.0					dependencies	minor
@fortawesome/free-solid-svg-icons (source)	6.5.1 -> 6.6.0					dependencies	minor
@fortawesome/vue-fontawesome	3.0.6 -> 3.0.8					dependencies	patch
@imengyu/vue3-context-menu	1.3.9 -> 1.4.2					dependencies	minor
@vitejs/plugin-vue (source)	5.0.4 -> 5.1.4					devDependencies	minor
body-parser	1.20.2 -> 1.20.3					dependencies	patch
cookie	^0.5.0 -> ^0.7.0					dependencies	minor
csv-parse (source)	5.5.5 -> 5.5.6					dependencies	patch
csv-stringify (source)	6.4.6 -> 6.5.1					dependencies	minor
eslint-plugin-import	2.29.1 -> 2.31.0					devDependencies	minor
eslint-plugin-vue (source)	9.24.0 -> 9.28.0					devDependencies	minor
express (source)	4.19.2 -> 4.21.1					dependencies	minor
mathieudutour/github-tag-action	v6.1 -> v6.2					action	minor
mongoose (source)	7.6.10 -> 7.8.2					dependencies	minor
otpauth	9.2.2 -> 9.3.4					dependencies	minor
pinia	2.1.7 -> 2.2.4					dependencies	minor
qrcode.vue (source)	3.4.1 -> 3.5.0					dependencies	minor
sass	1.72.0 -> 1.79.4					dependencies	minor
semver	~7.5.2 -> ~7.6.0					pnpm.overrides	minor
socks	~2.7.3 -> ~2.8.0					pnpm.overrides	minor
vite (source)	5.2.6 -> 5.4.8					devDependencies	minor
vue (source)	3.4.21 -> 3.5.11					dependencies	minor
vue-router	4.3.0 -> 4.4.5					dependencies	minor

---

Release Notes

formkit/formkit (@​formkit/vue)

v1.6.7

Compare Source

🐛 Bug Fixes

• Fixes compatibility with Vue 3.5.6 (#​1501)
• Indicates compatibility with new v4 nuxt (#​1418)
• Fixes casing for the type prop of datetime-local input (#​1486)
• Keeps placeholder for null or undefined as well (#​1474)

💪 New features

• New validation rules date_before_or_equal, date_after_or_equal, date_before_node, date_after_node

v1.6.6

Compare Source

🐛 Bug fixes

• Fixes a bug that caused cleanup issues in Vue 3.5+ (#​1496).

v1.6.5

Compare Source

🐛 Bug fixes

• Fixes a bug that causes the data-invalid attribute to not be removed when conditionally removing validation rules (#​1384).

v1.6.4

Compare Source

🐛 Bug fixes

• Fixes a bug with validation rule observers that caused rules with external dependencies to stop firing when placed in a certain sequence (#​1371).
• Fixes a bug that caused inputs with no validation rules to receive the data-invalid attribute on reset (regression in 1.6.3) (#​1376)

v1.6.3

Compare Source

💪 New Features

• New clear on submit option for local storage
• New context.state.passing property indicates whether or not a given input is passing all its validation rules.

🐛 Bug fixes

• Fixes auto animate plugin for FormKit components (#​1354).
• On multi-step inputs beforeStepChange is no longer called when the step cannot be advanced (#​1191).
• Quickly typing into an input no longer causes an invalid state flicker (#​1324).

v1.6.2

Compare Source

🐛 Bug fixes

• Widens unocss compatibility for the @formkit/themes package (#​1281).
• Small German translation fix (#​1293).
• Adds additional dependencies to the create-app cli command (#​1233).

v1.6.1

Compare Source

💪 New features

• Adds new experimental (not documented) configuration option mergeStrategy to allow syncing between two nodes of the same name inside the same parent.
• Improves tree shaking of @formkit/inputs package.

🐛 Bug fixes

• Fixes FormKit’s monorepo builds script on windows environments (#​1270).
• Floating label now works as a naked attribute.
• Fixes a bug that could cause the floating label to interfere with Transition components.
• Fixes a bug in findSection that did not properly return values from conditional branches.

FortAwesome/Font-Awesome (@​fortawesome/fontawesome-svg-core)

v6.6.0

Compare Source

Change log available at https://fontawesome.com/docs/changelog/

v6.5.2

Compare Source

Change log available at https://fontawesome.com/docs/changelog/

FortAwesome/vue-fontawesome (@​fortawesome/vue-fontawesome)

v3.0.8

Compare Source

Changed

• Updated package-lock.json to help fix faililng tests

---

v3.0.7

Compare Source

Changed

• Updated nodejs version in .tool-versions
• Updated Jest configuration for local testing
• Removed an unused import in FontAwesomeLayers.test.js
• Updated node-versions in ci.yml
• Added additional exports in index.d.ts
• Updated README.md for new Font Awesome Doc link

---

imengyu/vue3-context-menu (@​imengyu/vue3-context-menu)

v1.4.2

Compare Source

v1.4.1

Compare Source

v1.4.0

Compare Source

vitejs/vite-plugin-vue (@​vitejs/plugin-vue)

v5.1.4

• chore: format (07b29a6)
• chore(deps): update dependency rollup to ^4.21.3 (#​440) (98766c2), closes #​440
• fix: skip checking private properties of typeParameters (#​443) (e4f5fff), closes #​443
• fix(plugin-vue): allow overwrite esbuild config (#​444) (1344294), closes #​444

v5.1.3

• chore: upgrade to eslint 9 (236a40f)
• chore: use pnpm catalog for shared deps (0735e18)
• chore(deps): update dependency rollup to ^4.20.0 (#​433) (37c9073), closes #​433
• chore(deps): update upstream (#​436) (b75a46f), closes #​436
• fix(deps): update all non-major dependencies (#​421) (e3a7fec), closes #​421
• fix(plugin-vue): default value for __VUE_OPTIONS_API__ (acb57c9), closes #​438

v5.1.2

• refactor(plugin-vue): add type field (a6b7e3f)
• fix(plugin-vue): add deprecated script.propsDestructure option (1e24322), closes #​431
• chore(deps): update upstream (#​432) (5d592cd), closes #​432

v5.1.1

• fix(plugin-vue): clear script cache if recall (f5eb5ac), closes #​431

v5.1.0

• fix(deps): update all non-major dependencies (#​412) (8cb2ea9), closes #​412
• fix(plugin-vue): clear cache after build end (96dbb22)
• chore: update documentation for new features option (7fc7994)
• chore(deps): update upstream (#​416) (02a3edd), closes #​416
• feat(plugin-vue): add features option (#​419) (3e839e2), closes #​419

v5.0.5

• fix(deps): update all non-major dependencies (#​360) (ed4970a), closes #​360
• fix(deps): update all non-major dependencies (#​371) (0a484c7), closes #​371
• fix(plugin-vue): don't inline template when __VUE_PROD_DEVTOOLS__ (#​81) (277a3ab), closes #​81
• refactor(plugin-vue): use normalizePath from vite (#​395) (2848174), closes #​395
• chore(deps): replace dependency eslint-plugin-node with eslint-plugin-n ^14.0.0 (#​378) (997f9bb), closes #​378
• chore(deps): update all non-major dependencies (#​355) (4faec3d), closes #​355
• chore(deps): update upstream (#​356) (cf7d91e), closes #​356
• chore(deps): update upstream (#​361) (a28c46e), closes #​361
• chore(deps): update upstream (#​367) (2050ad3), closes #​367
• chore(deps): update upstream (#​379) (96c82e9), closes #​379
• chore(plugin-vue): update options on docs (3f8b472)

expressjs/body-parser (body-parser)

v1.20.3

Compare Source

===================

• deps: qs@6.13.0
• add depth option to customize the depth level in the parser
• IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)

jshttp/cookie (cookie)

v0.7.2

Compare Source

v0.7.1: 0.7.1

Compare Source

Fixed

• Allow leading dot for domain (#​174)
  • Although not permitted in the spec, some users expect this to work and user agents ignore the leading dot according to spec
• Add fast path for serialize without options, use obj.hasOwnProperty when parsing (#​172)

v0.7.0: 0.7.0

Compare Source

• perf: parse cookies ~10% faster (#​144 by @​kurtextrem and #​170)
  • fix: narrow the validation of cookies to match RFC6265 (#​167 by @​bewinsnw)
  • fix: add main to package.json for rspack (#​166 by @​proudparrot2)

v0.6.0

Compare Source

==================

• Add partitioned option

adaltas/node-csv (csv-parse)

v5.5.6

Compare Source

Bug Fixes

• csv-parse: skip event not raised with bom (fix #​411) (1326351)

adaltas/node-csv (csv-stringify)

v6.5.1

Compare Source

Note: Version bump only for package csv-stringify

v6.5.0

Compare Source

Features

• csv-parse: set columns type as readonly (#​358) (44f2e7c)

import-js/eslint-plugin-import (eslint-plugin-import)

v2.31.0

Compare Source

Added

• support eslint v9 ([#​2996], thanks [@​G-Rath] [@​michaelfaith])
• [order]: allow validating named imports ([#​3043], thanks [@​manuth])
• [extensions]: add the checkTypeImports option ([#​2817], thanks [@​phryneas])

Fixed

• ExportMap / flat config: include languageOptions in context ([#​3052], thanks [@​michaelfaith])
• [no-named-as-default]: Allow using an identifier if the export is both a named and a default export ([#​3032], thanks [@​akwodkiewicz])
• [export]: False positive for exported overloaded functions in TS ([#​3065], thanks [@​liuxingbaoyu])
• exportMap: export map cache is tainted by unreliable parse results ([#​3062], thanks [@​michaelfaith])
• exportMap: improve cacheKey when using flat config ([#​3072], thanks [@​michaelfaith])
• adjust "is source type module" checks for flat config ([#​2996], thanks [@​G-Rath])

Changed

• [Docs] [no-relative-packages]: fix typo ([#​3066], thanks [@​joshuaobrien])
• [Performance] [no-cycle]: dont scc for each linted file ([#​3068], thanks [@​soryy708])
• [Docs] [no-cycle]: add disableScc to docs ([#​3070], thanks [@​soryy708])
• [Tests] use re-exported RuleTester ([#​3071], thanks [@​G-Rath])
• [Docs] [no-restricted-paths]: fix grammar ([#​3073], thanks [@​unbeauvoyage])
• [Tests] [no-default-export], [no-named-export]: add test case (thanks [@​G-Rath])

v2.30.0

Compare Source

Added

• [dynamic-import-chunkname]: add allowEmpty option to allow empty leading comments ([#​2942], thanks [@​JiangWeixian])
• [dynamic-import-chunkname]: Allow empty chunk name when webpackMode: 'eager' is set; add suggestions to remove name in eager mode ([#​3004], thanks [@​amsardesai])
• [no-unused-modules]: Add ignoreUnusedTypeExports option ([#​3011], thanks [@​silverwind])
• add support for Flat Config ([#​3018], thanks [@​michaelfaith])

Fixed

• [no-extraneous-dependencies]: allow wrong path ([#​3012], thanks [@​chabb])
• [no-cycle]: use scc algorithm to optimize ([#​2998], thanks [@​soryy708])
• [no-duplicates]: Removing duplicates breaks in TypeScript ([#​3033], thanks [@​yesl-kim])
• [newline-after-import]: fix considerComments option when require ([#​2952], thanks [@​developer-bandi])
• [order]: do not compare first path segment for relative paths ([#​2682]) ([#​2885], thanks [@​mihkeleidast])

Changed

• [Docs] no-extraneous-dependencies: Make glob pattern description more explicit ([#​2944], thanks [@​mulztob])
• [no-unused-modules]: add console message to help debug [#​2866]
• [Refactor] ExportMap: make procedures static instead of monkeypatching exportmap ([#​2982], thanks [@​soryy708])
• [Refactor] ExportMap: separate ExportMap instance from its builder logic ([#​2985], thanks [@​soryy708])
• [Docs] order: Add a quick note on how unbound imports and --fix ([#​2640], thanks [@​minervabot])
• [Tests] appveyor -> GHA (run tests on Windows in both pwsh and WSL + Ubuntu) ([#​2987], thanks [@​joeyguerra])
• [actions] migrate OSX tests to GHA ([ljharb#37], thanks [@​aks-])
• [Refactor] exportMapBuilder: avoid hoisting ([#​2989], thanks [@​soryy708])
• [Refactor] ExportMap: extract "builder" logic to separate files ([#​2991], thanks [@​soryy708])
• [Docs] [order]: update the description of the pathGroupsExcludedImportTypes option ([#​3036], thanks [@​liby])
• [readme] Clarify how to install the plugin ([#​2993], thanks [@​jwbth])

vuejs/eslint-plugin-vue (eslint-plugin-vue)

v9.28.0

Compare Source

v9.27.0

Compare Source

v9.26.0

Compare Source

v9.25.0

Compare Source

v9.24.1

Compare Source

expressjs/express (express)

v4.21.1

Compare Source

v4.21.0

Compare Source

What's Changed

• Deprecate "back" magic string in redirects by @​blakeembrey in https://github.com/expressjs/express/pull/5935
• finalhandler@1.3.1 by @​wesleytodd in https://github.com/expressjs/express/pull/5954
• fix(deps): serve-static@1.16.2 by @​wesleytodd in https://github.com/expressjs/express/pull/5951
• Upgraded dependency qs to 6.13.0 to match qs in body-parser by @​agadzinski93 in https://github.com/expressjs/express/pull/5946

New Contributors

• @​agadzinski93 made their first contribution in https://github.com/expressjs/express/pull/5946

Full Changelog: expressjs/express@4.20.0...4.21.0

v4.20.0

Compare Source

==========

• deps: serve-static@0.16.0
  • Remove link renderization in html while redirecting
• deps: send@0.19.0
  • Remove link renderization in html while redirecting
• deps: body-parser@0.6.0
  • add depth option to customize the depth level in the parser
  • IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)
• Remove link renderization in html while using res.redirect
• deps: path-to-regexp@0.1.10
  • Adds support for named matching groups in the routes using a regex
  • Adds backtracking protection to parameters without regexes defined
• deps: encodeurl@~2.0.0
  • Removes encoding of \, |, and ^ to align better with URL spec
• Deprecate passing options.maxAge and options.expires to res.clearCookie
  • Will be ignored in v5, clearCookie will set a cookie with an expires in the past to instruct clients to delete the cookie

mathieudutour/github-tag-action (mathieudutour/github-tag-action)

v6.2

Compare Source

Automattic/mongoose (mongoose)

v7.8.2

Compare Source

==================

• fix(projection): avoid setting projection to unknown exclusive/inclusive if elemMatch on a Date, ObjectId, etc. #​14894 #​14893

v7.8.1

Compare Source

==================

• fix(query): handle casting $switch in $expr #​14761
• docs(mongoose): remove out-of-date callback-based example for mongoose.connect() #​14811 #​14810

v7.8.0

Compare Source

v7.7.0

Compare Source

v7.6.13

Compare Source

v7.6.12

Compare Source

===================

• fix(array): avoid converting to $set when calling pull() on an element in the middle of the array #​14531 #​14502
• fix: bump mongodb driver to 5.9.2 #​14561 lorand-horvath
• fix(update): cast array of strings underneath doc array with array filters #​14605 #​14595

v7.6.11

Compare Source

===================

• fix(populate): avoid match function filtering out null values in populate result #​14518
• fix(schema): support setting discriminator options in Schema.prototype.discriminator() #​14493 #​14448
• fix(schema): deduplicate idGetter so creating multiple models with same schema doesn't result in multiple id getters #​14492 #​14457

hectorm/otpauth (otpauth)

v9.3.4

Compare Source

What's Changed

• Bump the github-actions-all group with 4 updates by @​dependabot in https://github.com/hectorm/otpauth/pull/551

Full Changelog: hectorm/otpauth@v9.3.3...v9.3.4

v9.3.3

Compare Source

What's Changed

• Bump the npm-development-minor-patch group with 4 updates by @​dependabot in https://github.com/hectorm/otpauth/pull/542
• Bump the npm-development-minor-patch group with 3 updates by @​dependabot in https://github.com/hectorm/otpauth/pull/545
• Bump @​noble/hashes from 1.4.0 to 1.5.0 in the npm-production-minor-patch group by @​dependabot in https://github.com/hectorm/otpauth/pull/544
• Bump the github-actions-all group with 3 updates by @​dependabot in https://github.com/hectorm/otpauth/pull/543
• Bump the npm-development-minor-patch group with 7 updates by @​dependabot in https://github.com/hectorm/otpauth/pull/546
• Bump the npm-development-minor-patch group with 6 updates by @​dependabot in https://github.com/hectorm/otpauth/pull/548

Full Changelog: hectorm/otpauth@v9.3.2...v9.3.3

[v9.3.2](https://redirect.github.com/hectorm/otpauth

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[sonarcloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud