Bump yaml, @commitlint/cli, @release-it/conventional-changelog, cssnano, lint-staged, postcss-loader and release-it in /static/cts_api/swagger-ui

[dependabot]

Bumps yaml to 2.2.2 and updates ancestor dependencies yaml, @commitlint/cli, @release-it/conventional-changelog, cssnano, lint-staged, postcss-loader and release-it. These dependencies need to be updated together.

Updates yaml from 1.10.2 to 2.2.2

Release notes

Sourced from yaml's releases.

v2.2.2

This patch release includes a fix for an error that could be thrown in parseDocument for degenerate input. Otherwise, it's a patch release uplifting a few fixes from the ongoing v2.3 work to v2.2:

• Use correct argument order when stringifying flow collection comments (#443)
• First-line folding for block scalars (#422)
• Corner case failure in error pretty-printer (CVE-2023-2251)

v2.2.1

• Quote top-level map keys containing document markers (#431)

v2.2.0

New Features

• Add flowCollectionPadding toString option (#420)
• Use indicator line for props on block collection values of mappings (#425)

Bugfixes

• Minor relaxation of types for custom tags (#429)

v2.1.3

• Set correct node-end position for block collections with comments (#413)

v2.1.2

• Set correct node-end position for empty values with comments (#413)

v2.1.1

No changes in executable code, only TS types.

• Revert "Use TS named tuple for range (#385)" -- see #393
• Fix types for compatibility with TS 4.2 and 4.7
• Add CI workflow for testing published type in a range of TS versions

v2.1.0

Fixes for TypeScript users. Arguably this could've been a patch release as well.

• Improve/specify/fix TS types for Document & collection access methods (#383)
• Use TS named tuple for range (#385)
• Rename internal Document option as _directives to resolve type conflict with ToString options (#389)
• Update tsc target to ES2020 to match Node.js support
• Update dev dependencies, including jest 28

v2.0.1

• Fix tags and anchors on map keys (#378)

v2.0.0

This update has been in the works for the last year and a half. Its prerelease versions have been thoroughly tested by a wide number of users, and I think it's finally ready for "actual" release, for use in the mythical "production".

The breaking changes introduced here are mostly originating from the v1 CST parser having become a rather difficult beast to work with. So it's here rewritten pretty much completely, now with a lexer as a first stage. Along the way, the whole project was rewritten in TypeScript and the export paths and options refactored pretty deeply.

... (truncated)

Commits

• f21fa45 2.2.2
• 984f578 fix: Corner case failure in error pretty-printer
• 443e3aa fix: First-line folding for block scalars (fixes #422)
• 5af5d3d fix: Use correct argument order when stringifying flow collection comments (f...
• c914dcc 2.2.1
• c8551eb fix: Quote top-level map keys containing document markers (fixes #431)
• 3576408 2.2.0
• ab52daa ci: Remove all @​types except for node when testing types on old TS
• 85be08d chore: Explicitly set supported types in tsconfig.json
• 4732502 ci: Uninstall @​jest/types before testing types on TS 4.2
• Additional commits viewable in compare view

Updates @commitlint/cli from 16.2.1 to 17.6.1

Release notes

Sourced from @​commitlint/cli's releases.

v17.6.1

17.6.1 (2023-04-14)

Bug Fixes

• rules: avoid processing strings with case-less Letter category symbols in subject-case (#3586) (70a4450), closes #3585

Full Changelog: conventional-changelog/commitlint@v17.6.0...v17.6.1

v17.6.0

17.6.0 (2023-04-13)

Features

• rules: expand Latin-only characters limitation for subject-case with Unicode support (#3575) (5f83423)

New Contributors

• @​amariq made their first contribution in conventional-changelog/commitlint#3575

Full Changelog: conventional-changelog/commitlint@v17.5.1...v17.6.0

v17.5.1

17.5.1 (2023-03-28)

• Upgrade package to overcome Vulnerability by @​ucefkh in conventional-changelog/commitlint#3571

New Contributors

• @​ucefkh made their first contribution in conventional-changelog/commitlint#3571

Full Changelog: conventional-changelog/commitlint@v17.5.0...v17.5.1

v17.5.0

17.5.0 (2023-03-22)

Bug Fixes

• config-pnpm-scopes: refactor to remove peer dependencies (#3564) (f1f3bd5), closes #3556

Features

• GitHubCI: add (#3549) (d973611)

... (truncated)

Changelog

Sourced from @​commitlint/cli's changelog.

17.6.1 (2023-04-14)

Note: Version bump only for package @​commitlint/cli

17.6.0 (2023-04-13)

Note: Version bump only for package @​commitlint/cli

17.5.1 (2023-03-28)

Note: Version bump only for package @​commitlint/cli

17.5.0 (2023-03-22)

Note: Version bump only for package @​commitlint/cli

17.4.4 (2023-02-17)

Note: Version bump only for package @​commitlint/cli

17.4.3 (2023-02-13)

Note: Version bump only for package @​commitlint/cli

17.4.2 (2023-01-12)

... (truncated)

Commits

• 5da1048 v17.6.1
• 28bc4c7 v17.6.0
• 18fbed7 v17.5.1
• 665fbe4 v17.5.0
• 1aeec3c v17.4.4
• e3e4775 v17.4.3
• 3c691ad v17.4.2
• 317d044 v17.4.1
• 7b0f7e8 v17.4.0
• a437923 fix: update dependency fs-extra to v11 (#3460)
• Additional commits viewable in compare view

Updates @release-it/conventional-changelog from 3.0.1 to 5.1.1

Release notes

Sourced from @​release-it/conventional-changelog's releases.

Release 5.1.1

• Update dependencies (855a7df)
• Add test for infile: false (40869a1)
• Stricter tests and follow heading level (9aecd6a)

Release 5.1.0

• Extend exports with package.json (closes #52) (b19b6e8)
• Update dependencies & add semver (fixes #49) (d039a1c)

Release 5.0.0

• Add spec to assert conventional-recommended-bump and whatBump option behavior (124351c)
• Remove obsolete disable-metrics flag in test (39c0992)
• Whitespace (51adf99)
• Cross-os newlines (9bcc253)
• End support for Node.js v12 (de652df)
• Fix EOLs in specs (bc5f5e3)
• Fix spec after merge (1d2465d)
• Update version + dependencies (eb438a9)
• Don't mutate options, but send clean arguments to conventionalChangelog (d814638)
• Add GitHub Action for test matrix (c466c69)
• Move to real integration tests + add more (3ac968d)
• Refactor tests + more integrated tests (80b99dc)
• Update dependencies + engine version (f97297e)
• Migrate implementation to ESM (93c7255)

Release 5.0.0-esm.1

• Add spec to assert conventional-recommended-bump and whatBump option behavior (124351c)
• Remove obsolete disable-metrics flag in test (39c0992)
• Whitespace (51adf99)
• Cross-os newlines (9bcc253)
• End support for Node.js v12 (de652df)
• Fix EOLs in specs (bc5f5e3)
• Fix spec after merge (1d2465d)
• Merge branch 'master' into feature/es-modules (44629ed)

Release 5.0.0-esm.0

• Update version + dependencies (eb438a9)
• Don't mutate options, but send clean arguments to conventionalChangelog (d814638)
• Add GitHub Action for test matrix (c466c69)
• Move to real integration tests + add more (3ac968d)
• Refactor tests + more integrated tests (80b99dc)
• Update dependencies + engine version (f97297e)
• Migrate implementation to ESM (93c7255)

Release 4.3.0

• Remove CHANGES.md just in case before running specs (51d3b10)
• Remove unused prepend-file dependency (59053b4)
• Fix missing newlines (fixes #46) (cd55c13)
• Fix specs for new from prop (d20e50d)
• Pass previousTag to conventionalChangelog in gitRawCommitsOpts to select commit messages (#47) (f13909e)

... (truncated)

Commits

• 8f43427 Release 5.1.1
• 855a7df Update dependencies
• 40869a1 Add test for infile: false
• 9aecd6a Stricter tests and follow heading level
• ace23a7 Release 5.1.0
• b19b6e8 Extend exports with package.json (closes #52)
• d039a1c Update dependencies & add semver (fixes #49)
• b367152 Release 5.0.0
• 88c2d64 Release 5.0.0-esm.1
• 124351c Add spec to assert conventional-recommended-bump and whatBump option behavior
• Additional commits viewable in compare view

Updates cssnano from 5.1.0 to 6.0.0

Release notes

Sourced from cssnano's releases.

v6.0.0

Major Changes

• 99d1e6ab: postcss-normalize-url: remove normalize-url configuration options
• 4e272f88: postcss-svgo: Upgrade dependency svgo to v3 and increase the minimum supported node version to v14
• ca9d3f55: Switch minimum supported Node version to 14 for all packages
• 39a20405: feat!(cssnano): remove undocumented YAML config support

Migration instructions

• If you're not happy with the defaults for the normalize-url transform, turn it off completely. Options were removed as most would change the meaning of the URL, which is unexpcted in the case of CSS minification.
• In the unlikely event you're using YAML to configure cssnano, move the cssnano configuration inside the PostCSS config or use a configuration file in CommonJS or JSON format.

v5.1.15

Bug Fixes

• fix(postcsss-reduce-initial): fix mask-repeat conversion
• fix(postcss-colormin): don't minify colors in src declarations
• fix(postcss-merge-rules): do not merge conflicting flex and border properties

v5.1.14

Bug Fixes

• fix: update autoprefixer and browserslist
• fix(postcss-reduce-initial): improve initial properties data

v5.1.13

Bug Fixes

• fix TypeScript type of cssnano() return value (cssnano/cssnano@b92dbe3)

v5.1.12

Bug Fixes

• fix: preserve hyphenated property case (cssnano/cssnano@120a888)
• fix: ensure sorting properties does not break the output (cssnano/cssnano@0a3a133)
• fix: recognize 'constant' as a function (cssnano/cssnano@858a8b7)

v5.1.11

Bug Fixes

• postcss-ordered-values: preserve constant values (32ab4d9b7d20d)

v5.1.10

Bug Fixes

• postcss-minify-selectors: preserve similar nested selectors (f6c29fb3e75ac26a2635d)

v5.1.9

Bug Fixes

• postcss-merge-longhand: preserve more color function fallbacks (712993cb4a4e0)

v5.1.8

Bug Fixes

• postcss-convert-values: preserve percentage sign on IE 11 (57f060ad21734)

... (truncated)

Commits

• 8e89938 Publish cssnano 6.0 (#1484)
• 4e657ef test(postcss-normalize-url): improve normalize-url coverage (#1483)
• 91a7cdb fix(postcss-reduce-initial): ensure options are always read (#1482)
• 99d1e6a feat!(postcss-normalize-url): inline third-party dep and remove options (#1480)
• 65674d4 chore: update TypeScript to 5.0.2
• 2ca0634 test: udpdate uvu
• 8563e51 chore: update sample CLI project to latest postcss-cli
• 6503d35 test: update integration test dependencies
• ca9d3f5 test: bump minimum Node version to 14 (#1477)
• 4e272f8 chore(deps)!: upgrade svgo to v3 (#1440)
• Additional commits viewable in compare view

Updates lint-staged from 11.2.6 to 13.2.1

Release notes

Sourced from lint-staged's releases.

v13.2.1

13.2.1 (2023-04-07)

Bug Fixes

• ignore "package.json" as config file when it's invalid JSON (#1281) (e7ed6f7)

v13.2.0

13.2.0 (2023-03-10)

Bug Fixes

• dependencies: replace colorette with chalk for better color support detection (f598725)
• use index-based stash references for improved MSYS2 compatibility (#1270) (60fcd99)

Features

• version bump only (#1275) (05fb382)

v13.1.2

13.1.2 (2023-02-13)

Bug Fixes

• disable stash by default when using diff option (#1259) (142c6f2)

v13.1.1

13.1.1 (2023-02-07)

Bug Fixes

• allow re-enabling --stash when using the --diff option (99390c3)

v13.1.0

13.1.0 (2022-12-04)

Features

• expose cli entrance from "lint-staged/bin" (#1237) (eabf1d2)

v13.0.4

13.0.4 (2022-11-25)

... (truncated)

Commits

• e7ed6f7 fix: ignore "package.json" as config file when it's invalid JSON (#1281)
• 05fb382 feat: version bump only (#1275)
• f4351e3 ci: disable workflow for next branch
• 52a650b docs: update README.md (#1273)
• 60fcd99 fix: use index-based stash references for improved MSYS2 compatibility (#1270)
• 0d843ce chore(dependencies): update all dependencies
• f598725 fix(dependencies): replace colorette with chalk for better color support ...
• 1bbe37a chore(dependencies): update all dependencies
• f230c69 docs: Clean up readme.me (#1263)
• 142c6f2 fix: disable stash by default when using diff option (#1259)
• Additional commits viewable in compare view

Updates postcss-loader from 6.2.1 to 7.2.4

Release notes

Sourced from postcss-loader's releases.

v7.2.4

7.2.4 (2023-04-04)

Bug Fixes

• memory leak (#642) (7ab3b59)

v7.2.3

7.2.3 (2023-04-03)

Bug Fixes

• ts-node loading (#640) (38b1992)

v7.2.2

7.2.2 (2023-04-03)

Bug Fixes

• cannot find module 'ts-node' (#639) (ab4d16a)

v7.2.1

7.2.1 (2023-04-03)

Bug Fixes

• cosmiconfig typescript loader (#635) (129f5be)

v7.2.0

7.2.0 (2023-04-03)

Features

• add support for TypeScript based configs (#632) (c6b5def)

v7.1.0

7.1.0 (2023-03-16)

Features

• deps: update cosmiconfig (#628) (8114be4)

v7.0.2

7.0.2 (2022-11-29)

... (truncated)

Changelog

Sourced from postcss-loader's changelog.

7.2.4 (2023-04-04)

Bug Fixes

• memory leak (#642) (7ab3b59)

7.2.3 (2023-04-03)

Bug Fixes

• ts-node loading (#640) (38b1992)

7.2.2 (2023-04-03)

Bug Fixes

• cannot find module 'ts-node' (#639) (ab4d16a)

7.2.1 (2023-04-03)

Bug Fixes

• cosmiconfig typescript loader (#635) (129f5be)

7.2.0 (2023-04-03)

Features

• add support for TypeScript based configs (#632) (c6b5def)

7.1.0 (2023-03-16)

Features

• deps: update cosmiconfig (#628) (8114be4)

7.0.2 (2022-11-29)

Bug Fixes

• support ESM version of postcss.config.js and postcss.config.mjs (#614) (955085f)

7.0.1 (2022-07-11)

... (truncated)

Commits

• ef332db chore(release): 7.2.4
• 7ab3b59 fix: memory leak (#642)
• e4212a3 chore(release): 7.2.3
• 38b1992 fix: ts-node loading (#640)
• 76c75a8 chore(release): 7.2.2
• ab4d16a fix: cannot find module 'ts-node' (#639)
• 2112904 chore(release): 7.2.1
• 129f5be fix: cosmiconfig typescript loader (#635)
• 1504cba chore(release): 7.2.0
• 68c1b9c chore(deps): update (#633)
• Additional commits viewable in compare view

Updates release-it from 14.12.5 to 15.10.1

Release notes

Sourced from release-it's releases.

Release 15.10.1

• Add link to release-it + Github Actions walk-through video (3f379ff)
• Update docs (bf6aa23)

Release 15.10.0

• Turn on github.comments for release-it (b232b21)
• Update dependencies (6789e76)
• Add github.comments feature to add comments to merged pull requests and closed issues (b22ac20)

Release 15.9.3

• Remove knip from devDependencies as it requires Node.js v16 (31e4f4d)

Release 15.9.2

• Add knip analysis to release hooks (88a06ea)
• Fix up config for Knip v2 (b96d1bf)
• Add --registry argument to npm publish if set in publishConfig.registry (c59d55e)
• Update dependencies (7c86856)

Release 15.9.1

• Update dependencies (3673754)
• Update projects using release-it (c2cfc51)

Release 15.9.0

• Update dependencies (2271e2a)
• Remove unnecessary await (b34a9d5)
• Support function for configuring github/gitlab releaseNotes (#987) (81e18fa)

Release 15.8.0

• Skip test (ENAMETOOLONG on Windows) (ca9a767)
• Update dependencies (377c880)
• Truncate github release notes body > 124k characters (closes #965) (218ffc1)
• Add note about github.autoGenerate (closes #945) (eaf85d7)
• Skip publish prompt when package.json has private: true (fixes #936) (d816d40)

Release 15.7.0

• Replace master with main where applicable (f4702c4)
• feat: make exit 0 possible when commits required but missing (#984) (7076fd3)
• feat: configurable path in git rev-list (#982) (81a7d69)
• Add increased timeout to test/tasks.js (for Windows) (0a23c55)

Release 15.6.1

• Update dependencies (554c600)
• Fix npm list collaborators diff in npm v8 vs v9 in tests (1935621)
• Mention bumper plugin in npm docs (1e6dca8)
• Fixed plugins README on peerDependencies property (#980) (7784c97)
• Update dependencies (2a8271f)
• Add axios to list of projects using release-it (b525c25)

Release 15.6.0

• Fix specs for #966 (39a318b)

... (truncated)

Changelog

Sourced from release-it's changelog.

Changelog

This document lists breaking changes for each major release.

See the GitHub Releases page for detailed changelogs: https://github.com/release-it/release-it/releases

v15 (2022-04-30)

• Removed support for Node.js v10 and v12.
• Removed support for GitLab v12.4 and lower.
• Removed anonymous metrics (and the option to disable it).
• Programmatic usage and plugins only through ES Module syntax (import)

Use release-it v14 in legacy environments.

v14 (2020-09-03)

• Removed global property from plugins. Use this.config[key] instead.
• Removed deprecated npm.access option. Set this in package.json instead.

v13 (2020-03-07)

• Dropped support for Node v8
• Dropped support for GitLab v11.6 and lower.
• Deprecated scripts are removed (in favor of hooks).
• Removed deprecated --non-interactive (-n) argument. Use --ci instead.
• Removed old %s and [REV_RANGE] syntax in command substitutions. Use ${version} and ${latestTag} instead.

v12 (2019-05-03)

• The --follow-tags argument for git push has been moved to the default configuration. This is only a breaking change if git.pushArgs was not empty (it was empty by default).

v11

• The custom conventional-changelog increment (e.g. "increment": "conventional:angular") with additional script configuration is replaced with a plugin. Please see conventional changelog how to use this plugin.
• The pkgFiles option has been removed. If there's a need to bump other files than what npm version bumps, it should be (part of) a plugin.
• By default, the latest version was derived from the latest Git tag. From v11, if the repo has a package.json then that version is used instead. The use option has been removed. Also see latest version.
• scripts.changelog has been moved to git.changelog

v10

• Dropped support for Node v6

... (truncated)

Commits

• 30035e0 Release 15.10.1
• 3f379ff Add link to release-it + Github Actions walk-through video
• bf6aa23 Update docs
• ade4184 Release 15.10.0
• b232b21 Turn on github.comments for release-it
• 6789e76 Update dependencies
• b22ac20 Add github.comments feature to add comments to merged pull requests and close...
• 1d7e3c2 Release 15.9.3
• 31e4f4d Remove knip from devDependencies as it requires Node.js v16
• dd38d7a Release 15.9.2
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.