chore(deps): update dependency undici to v8.5.0

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
undici (source)	8.4.1 → 8.5.0

---

Release Notes

nodejs/undici (undici)

v8.5.0

Compare Source

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • At any time (no schedule defined)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	undici@​8.5.0

View full report

[pkg-pr-new]

Open in StackBlitz

npm i https://pkg.pr.new/node-modules/urllib@824

commit: 2bb5443

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 94.24%. Comparing base (dc180b3) to head (2bb5443).

Additional details and impacted files

@@           Coverage Diff           @@
##           master     #824   +/-   ##
=======================================
  Coverage   94.24%   94.24%           
=======================================
  Files          10       10           
  Lines         747      747           
  Branches      235      235           
=======================================
  Hits          704      704           
  Misses         40       40           
  Partials        3        3           

☔ View full report in Codecov by Harness.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[fengmk2]

@codex fix https://github.com/node-modules/urllib/actions/runs/27749846278/job/82097266149?pr=824

[chatgpt-codex-connector]

Summary

• Deduplicated pnpm-lock.yaml after the undici@8.5.0 update by removing the extra semver@7.8.1 lockfile entry and keeping the single semver@7.8.4 package snapshot. pnpm-lock.yamlL1375-L1378
• Updated transitive snapshots so both @arethetypeswrong/cli@0.18.3 and make-dir@4.0.0 resolve to semver@7.8.4, addressing the failing vp dedupe --check CI step. pnpm-lock.yamlL1648-L1654 pnpm-lock.yamlL2447-L2449
• Committed the fix on the current branch: bb6d672 chore: dedupe lockfile after undici update.
• Created a PR with title: chore: dedupe lockfile after undici update.

Testing

• ✅ PATH=$HOME/.local/share/mise/installs/node/24.16.0/bin:$PATH pnpm vp dedupe --check
• ✅ PATH=$HOME/.local/share/mise/installs/node/24.16.0/bin:$PATH pnpm vp run check
• ✅ PATH=$HOME/.local/share/mise/installs/node/24.16.0/bin:$PATH pnpm vp run typecheck
• ✅ PATH=$HOME/.local/share/mise/installs/node/24.16.0/bin:$PATH pnpm vp run build
• ⚠️ corepack enable && pnpm install --frozen-lockfile initially failed under the default local Node.js v20.20.2 because this repo’s configured pnpm requires newer Node.js features; reran successfully with Node.js v24.16.0.

View task →