Bump the npm group across 1 directory with 6 updates

[dependabot]

Bumps the npm group with 6 updates in the / directory:

Package	From	To
semver	7.6.0	7.6.2
chai	5.1.0	5.1.1
express	4.18.3	4.19.2
get-port	7.0.0	7.1.0
grunt-nw-builder	4.0.1	4.7.1
mocha	10.3.0	10.4.0

Updates semver from 7.6.0 to 7.6.2

Release notes

Sourced from semver's releases.

v7.6.2

7.6.2 (2024-05-09)

Bug Fixes

• 6466ba9 #713 lru: use map.delete() directly (#713) (@​negezor, @​lukekarrys)

v7.6.1

7.6.1 (2024-05-04)

Bug Fixes

• c570a34 #704 linting: no-unused-vars (@​wraithgar)
• ad8ff11 #704 use internal cache implementation (@​mbtools)
• ac9b357 #682 typo in compareBuild debug message (#682) (@​mbtools)

Dependencies

• 988a8de #709 uninstall lru-cache (#709)
• 3fabe4d #704 remove lru-cache

Chores

• dd09b60 #705 bump @​npmcli/template-oss to 4.22.0 (@​lukekarrys)
• ec49cdc #701 chore: chore: postinstall for dependabot template-oss PR (@​lukekarrys)
• b236c3d #696 add benchmarks (#696) (@​H4ad)
• 692451b #688 various improvements to README (#688) (@​mbtools)
• 5feeb7f #705 postinstall for dependabot template-oss PR (@​lukekarrys)
• 074156f #701 bump @​npmcli/template-oss from 4.21.3 to 4.21.4 (@​dependabot[bot])

Changelog

Sourced from semver's changelog.

7.6.2 (2024-05-09)

Bug Fixes

• 6466ba9 #713 lru: use map.delete() directly (#713) (@​negezor, @​lukekarrys)

7.6.1 (2024-05-04)

Bug Fixes

• c570a34 #704 linting: no-unused-vars (@​wraithgar)
• ad8ff11 #704 use internal cache implementation (@​mbtools)
• ac9b357 #682 typo in compareBuild debug message (#682) (@​mbtools)

Dependencies

• 988a8de #709 uninstall lru-cache (#709)
• 3fabe4d #704 remove lru-cache

Chores

• dd09b60 #705 bump @​npmcli/template-oss to 4.22.0 (@​lukekarrys)
• ec49cdc #701 chore: chore: postinstall for dependabot template-oss PR (@​lukekarrys)
• b236c3d #696 add benchmarks (#696) (@​H4ad)
• 692451b #688 various improvements to README (#688) (@​mbtools)
• 5feeb7f #705 postinstall for dependabot template-oss PR (@​lukekarrys)
• 074156f #701 bump @​npmcli/template-oss from 4.21.3 to 4.21.4 (@​dependabot[bot])

Commits

• eb1380b chore: release 7.6.2 (#714)
• 6466ba9 fix(lru): use map.delete() directly (#713)
• d777418 chore: release 7.6.1 (#706)
• 988a8de deps: uninstall lru-cache (#709)
• 5feeb7f chore: postinstall for dependabot template-oss PR
• dd09b60 chore: bump @​npmcli/template-oss to 4.22.0
• c570a34 fix(linting): no-unused-vars
• ad8ff11 fix: use internal cache implementation
• 3fabe4d deps: remove lru-cache
• ec49cdc chore: chore: chore: postinstall for dependabot template-oss PR
• Additional commits viewable in compare view

Updates chai from 5.1.0 to 5.1.1

Release notes

Sourced from chai's releases.

v5.1.1

What's Changed

• Set up ESLint for JSDoc comments by @​koddsson in chaijs/chai#1605
• build(deps-dev): bump ip from 1.1.8 to 1.1.9 by @​dependabot in chaijs/chai#1608
• Correct Mocha import instructions by @​MattiSG in chaijs/chai#1611
• fix: support some virtual contexts in toThrow by @​43081j in chaijs/chai#1609

New Contributors

• @​MattiSG made their first contribution in chaijs/chai#1611

Full Changelog: chaijs/chai@v5.1.0...v5.1.1

Commits

• 37263c0 fix: support some virtual contexts in toThrow (#1609)
• 91e58ed Correct Mocha import instructions (#1611)
• 61159d1 build(deps-dev): bump ip from 1.1.8 to 1.1.9 (#1608)
• 8475d2a Set up ESLint for JSDoc comments (#1605)
• 936c0ca 5.1.0
• See full diff in compare view

Updates express from 4.18.3 to 4.19.2

Release notes

Sourced from express's releases.

4.19.2

What's Changed

• Improved fix for open redirect allow list bypass

Full Changelog: expressjs/express@4.19.1...4.19.2

4.19.1

What's Changed

• Fix ci after location patch by @​wesleytodd in expressjs/express#5552
• fixed un-edited version in history.md for 4.19.0 by @​wesleytodd in expressjs/express#5556

Full Changelog: expressjs/express@4.19.0...4.19.1

4.19.0

What's Changed

• fix typo in release date by @​UlisesGascon in expressjs/express#5527
• docs: nominating @​wesleytodd to be project captian by @​wesleytodd in expressjs/express#5511
• docs: loosen TC activity rules by @​wesleytodd in expressjs/express#5510
• Add note on how to update docs for new release by @​crandmck in expressjs/express#5541
• Prevent open redirect allow list bypass due to encodeurl
• Release 4.19.0 by @​wesleytodd in expressjs/express#5551

New Contributors

• @​crandmck made their first contribution in expressjs/express#5541

Full Changelog: expressjs/express@4.18.3...4.19.0

Changelog

Sourced from express's changelog.

4.19.2 / 2024-03-25

• Improved fix for open redirect allow list bypass

4.19.1 / 2024-03-20

• Allow passing non-strings to res.location with new encoding handling checks

4.19.0 / 2024-03-20

• Prevent open redirect allow list bypass due to encodeurl
• deps: [email protected]

Commits

• 04bc627 4.19.2
• da4d763 Improved fix for open redirect allow list bypass
• 4f0f6cc 4.19.1
• a003cfa Allow passing non-strings to res.location with new encoding handling checks f...
• a1fa90f fixed un-edited version in history.md for 4.19.0
• 11f2b1d build: fix build due to inconsistent supertest behavior in older versions
• 084e365 4.19.0
• 0867302 Prevent open redirect allow list bypass due to encodeurl
• 567c9c6 Add note on how to update docs for new release (#5541)
• 69a4cf2 deps: [email protected]
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by wesleytodd, a new releaser for express since your current version.

Updates get-port from 7.0.0 to 7.1.0

Release notes

Sourced from get-port's releases.

v7.1.0

• Add clearLockedPorts() method (#70) d4fb7f8

sindresorhus/get-port@v7.0.0...v7.1.0

Commits

• 5c3cfe8 7.1.0
• cacb5f2 Meta tweaks
• d4fb7f8 Add clearLockedPorts() method (#70)
• See full diff in compare view

Updates grunt-nw-builder from 4.0.1 to 4.7.1

Release notes

Sourced from grunt-nw-builder's releases.

v4.6.1

What's Changed

Bug Fixes

• fix: pipe nwjs.src into nw-builder's options.srcDir 0fa35ab

Chores

• chore: bump the gha group in /.github/workflows with 3 updates by @​dependabot in nwjs/grunt-nw-builder#192

Full Changelog: nwjs/grunt-nw-builder@v4.6.0...v4.6.1

v4.6.0

What's Changed

• fix: set options.srcDir to this.data.src by @​CareyJWilliams in nwjs/grunt-nw-builder#180
• chore: bump the nw-builder to v4.6.4 in nwjs/grunt-nw-builder#191

New Contributors

• @​CareyJWilliams made their first contribution in nwjs/grunt-nw-builder#180

Full Changelog: nwjs/grunt-nw-builder@v4.0.0...v4.6.0

Commits

• See full diff in compare view

Updates mocha from 10.3.0 to 10.4.0

Release notes

Sourced from mocha's releases.

v10.4.0

10.4.0 / 2024-03-26

🎉 Enhancements

• #4829 feat: include .cause stacks in the error stack traces (@​voxpelli)
• #4985 feat: add file path to xunit reporter (@​bmish)

🐛 Fixes

• #5074 fix: harden error handling in lib/cli/run.js (@​stalet)

🔩 Other

• #5077 chore: add mtfoley/pr-compliance-action (@​JoshuaKGoldberg)
• #5060 chore: migrate ESLint config to flat config (@​JoshuaKGoldberg)
• #5095 chore: revert #5069 to restore Netlify builds (@​voxpelli)
• #5097 docs: add sponsored to sponsorship link rels (@​JoshuaKGoldberg)
• #5093 chore: add 'status: in triage' label to issue templates and docs (@​JoshuaKGoldberg)
• #5083 docs: fix CHANGELOG.md headings to start with a root-level h1 (@​JoshuaKGoldberg)
• #5100 chore: fix header generation and production build crashes (@​JoshuaKGoldberg)
• #5104 chore: bump ESLint ecmaVersion to 2020 (@​JoshuaKGoldberg)
• #5116 fix: eleventy template builds crash with 'unexpected token at ": string, msg..."' (@​LcsK)
• #4869 docs: fix documentation concerning glob expansion on UNIX (@​binki)
• #5122 test: fix xunit integration test (@​voxpelli)
• #5123 chore: activate dependabot for workflows (@​voxpelli)
• #5125 build(deps): bump the github-actions group with 2 updates (@​dependabot)

Changelog

Sourced from mocha's changelog.

10.4.0 / 2024-03-26

🎉 Enhancements

• #4829 feat: include .cause stacks in the error stack traces (@​voxpelli)
• #4985 feat: add file path to xunit reporter (@​bmish)

🐛 Fixes

• #5074 fix: harden error handling in lib/cli/run.js (@​stalet)

🔩 Other

• #5077 chore: add mtfoley/pr-compliance-action (@​JoshuaKGoldberg)
• #5060 chore: migrate ESLint config to flat config (@​JoshuaKGoldberg)
• #5095 chore: revert #5069 to restore Netlify builds (@​voxpelli)
• #5097 docs: add sponsored to sponsorship link rels (@​JoshuaKGoldberg)
• #5093 chore: add 'status: in triage' label to issue templates and docs (@​JoshuaKGoldberg)
• #5083 docs: fix CHANGELOG.md headings to start with a root-level h1 (@​JoshuaKGoldberg)
• #5100 chore: fix header generation and production build crashes (@​JoshuaKGoldberg)
• #5104 chore: bump ESLint ecmaVersion to 2020 (@​JoshuaKGoldberg)
• #5116 fix: eleventy template builds crash with 'unexpected token at ": string, msg..."' (@​LcsK)
• #4869 docs: fix documentation concerning glob expansion on UNIX (@​binki)
• #5122 test: fix xunit integration test (@​voxpelli)
• #5123 chore: activate dependabot for workflows (@​voxpelli)
• #5125 build(deps): bump the github-actions group with 2 updates (@​dependabot)

Commits

• ffd9557 Release v10.4.0
• 7ac67f3 build(deps): bump the github-actions group with 2 updates (#5125)
• 7a2781c chore: activate dependabot for workflows (#5123)
• 97dcbb2 fix: harden error handling in lib/cli/run.js (#5074)
• 6f3f45e fix: xunit integration test (#5122)
• a5b5652 docs: fix documentation concerning glob expansion on UNIX (#4869)
• efbb147 feat: add file path to xunit reporter (#4985)
• a2e600d fix: closes #5115 (#5116)
• 3735873 feat: include .cause stacks in the error stack traces (#4829)
• b88978d chore: bump ESLint ecmaVersion to 2020 (#5104)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by voxpelli, a new releaser for mocha since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Superseded by #165.