chore(deps): update minor and patch dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence	Type	Update
@11ty/eleventy-fetch	5.0.1 -> 5.0.2					devDependencies	patch
@secretlint/core (source)	9.0.0 -> 9.2.0					devDependencies	minor
@secretlint/secretlint-rule-preset-recommend (source)	9.0.0 -> 9.2.0					devDependencies	minor
@types/node (source)	22.10.2 -> 22.13.10					devDependencies	minor
@vitest/coverage-v8 (source)	2.1.8 -> 2.1.9					devDependencies	patch
axios (source)	1.7.9 -> 1.8.2					devDependencies	minor
crate-ci/typos	v1.29.0 -> v1.30.1					action	minor
fast-xml-parser	4.5.1 -> 4.5.3					devDependencies	patch
flat-cache (source)	6.1.5 -> 6.1.7					devDependencies	patch
open-graph-scraper	6.8.3 -> 6.9.0					devDependencies	minor
secretlint (source)	9.0.0 -> 9.2.0					devDependencies	minor
tsx (source)	4.19.2 -> 4.19.3					devDependencies	patch
typescript (source)	5.7.2 -> 5.8.2					devDependencies	minor

---

Release Notes

11ty/eleventy-fetch (@​11ty/eleventy-fetch)

v5.0.2: Eleventy Fetch v5.0.2

Compare Source

• Improved advanced API (you might not need this). Existing default export creates an instance and couples data fetching together. This release adds a Fetch named export to create a Fetch instance without fetching data automatically. Works with the concurrency queue. Use the queue() method to fetch data.

import CachedFetch, { Fetch } from "@​11ty/eleventy-fetch";

let data = await CachedFetch(source, options);

// is the same as:
let inst = Fetch(source, options);
let data = await inst.queue();

• Adds wasLastFetchCacheHit() on Fetch instances, used to solve bug with Eleventy Image disk cache https://github.com/11ty/eleventy-img/issues/146
• Improved efficiency: Adds top level instance cache and a few internal caches to avoid duplicate fetch or file system read calls.
• Adds internal directory manager to avoid duplicate fs.mkdir calls
• Improved debug logs

Full Changelog: 11ty/eleventy-fetch@v5.0.1...v5.0.2

secretlint/secretlint (@​secretlint/core)

v9.2.0

Compare Source

What's Changed

Features

• feat(cli): support --stdinFileName=dummy.txt for linting STDIN by @​azu in https://github.com/secretlint/secretlint/pull/968

$ echo "SECRET CONTENT" | secretlint --stdinFileName=secret.txt

Example:

cat ~/.zsh_history| ./bin/secretlint --stdinFileName=dummy.txt --format=mask-result

Refactoring

• refactor(index): use fs/promises for async file reading in createRawSource by @​azu in https://github.com/secretlint/secretlint/pull/967

Full Changelog: secretlint/secretlint@v9.1.0...v9.2.0

v9.1.0

Compare Source

What's Changed

Features

• chore(deps): update dependency bun to v1.2.3 by @​renovate in https://github.com/secretlint/secretlint/pull/913
• feat(rule): add allowFileNames option to no-dotenv rule by @​azu in https://github.com/secretlint/secretlint/pull/964

Documentation

• fix: grammar by @​Zamiell in https://github.com/secretlint/secretlint/pull/936
• Update dot-env docs by @​azu in https://github.com/secretlint/secretlint/pull/950

Dependency Updates

• chore(deps): update patch updates (patch) by @​renovate in https://github.com/secretlint/secretlint/pull/912
• fix(deps): update dependency secp256k1 to v5.0.1 [security] by @​renovate in https://github.com/secretlint/secretlint/pull/915
• chore(deps): update dependency @​types/node to ^20.16.12 by @​renovate in https://github.com/secretlint/secretlint/pull/916
• fix(deps): update dependency secp256k1 to ^5.0.1 by @​renovate in https://github.com/secretlint/secretlint/pull/917
• chore(deps): update yarn to v4.5.1 by @​renovate in https://github.com/secretlint/secretlint/pull/918
• chore(deps): update dependency @​types/node to ^20.16.13 by @​renovate in https://github.com/secretlint/secretlint/pull/919
• chore(deps): update dependency @​types/node to ^20.16.14 by @​renovate in https://github.com/secretlint/secretlint/pull/921
• chore(deps): bump elliptic from 6.5.7 to 6.6.0 by @​dependabot in https://github.com/secretlint/secretlint/pull/922
• chore(deps): update dependency @​types/node to ^20.16.15 by @​renovate in https://github.com/secretlint/secretlint/pull/923
• chore(deps): update dependency @​types/node to ^20.17.0 by @​renovate in https://github.com/secretlint/secretlint/pull/924
• chore(deps): update dependency @​types/node to ^20.17.0 by @​renovate in https://github.com/secretlint/secretlint/pull/925
• fix(deps): update textlint to ^14.3.0 (minor) by @​renovate in https://github.com/secretlint/secretlint/pull/926
• chore(deps): update dependency @​types/node to ^20.17.1 by @​renovate in https://github.com/secretlint/secretlint/pull/927
• chore(deps): update dependency @​types/node to ^20.17.2 by @​renovate in https://github.com/secretlint/secretlint/pull/928
• chore(deps): update dependency @​types/node to ^20.17.3 by @​renovate in https://github.com/secretlint/secretlint/pull/929
• chore(deps): update dependency mocha to ^10.8.1 by @​renovate in https://github.com/secretlint/secretlint/pull/930
• chore(deps): update dependency mocha to ^10.8.2 by @​renovate in https://github.com/secretlint/secretlint/pull/931
• chore(deps): update dependency @​types/node to ^20.17.4 by @​renovate in https://github.com/secretlint/secretlint/pull/932
• chore(deps): update dependency @​types/node to ^20.17.5 by @​renovate in https://github.com/secretlint/secretlint/pull/933
• chore(deps): update dependency @​types/node to ^20.17.6 by @​renovate in https://github.com/secretlint/secretlint/pull/934
• fix(deps): update dependency cross-spawn to ^7.0.5 by @​renovate in https://github.com/secretlint/secretlint/pull/935
• chore(deps): bump cross-spawn from 7.0.3 to 7.0.6 by @​dependabot in https://github.com/secretlint/secretlint/pull/937
• fix(deps): update dependency cross-spawn to ^7.0.6 by @​renovate in https://github.com/secretlint/secretlint/pull/938
• chore(deps): update dependency @​types/mocha to ^10.0.10 by @​renovate in https://github.com/secretlint/secretlint/pull/939
• chore(deps): update yarn to v4.5.2 by @​renovate in https://github.com/secretlint/secretlint/pull/940
• chore(deps): update dependency @​types/node to ^20.17.7 by @​renovate in https://github.com/secretlint/secretlint/pull/941
• chore(deps): update yarn to v4.5.3 by @​renovate in https://github.com/secretlint/secretlint/pull/942
• chore(deps): update dependency @​types/node to ^20.17.8 by @​renovate in https://github.com/secretlint/secretlint/pull/943
• chore(deps): update dependency @​types/node to ^20.17.9 by @​renovate in https://github.com/secretlint/secretlint/pull/944
• fix(deps): update textlint to ^14.4.0 (minor) by @​renovate in https://github.com/secretlint/secretlint/pull/945
• fix(deps): update dependency table to ^6.9.0 by @​renovate in https://github.com/secretlint/secretlint/pull/946
• fix(deps): update dependency debug to ^4.4.0 by @​renovate in https://github.com/secretlint/secretlint/pull/947
• chore(deps): update dependency @​types/node to ^20.17.10 by @​renovate in https://github.com/secretlint/secretlint/pull/948
• chore(deps): update dependency @​rollup/plugin-node-resolve to ^15.3.1 by @​renovate in https://github.com/secretlint/secretlint/pull/949
• chore(deps): update yarn to v4.6.0 by @​renovate in https://github.com/secretlint/secretlint/pull/951
• chore(deps): update dependency @​types/node to ^20.17.11 by @​renovate in https://github.com/secretlint/secretlint/pull/952
• fix(deps): update textlint to ^14.4.2 (patch) by @​renovate in https://github.com/secretlint/secretlint/pull/953
• chore(deps): update dependency @​types/node to ^20.17.12 by @​renovate in https://github.com/secretlint/secretlint/pull/954
• chore(deps): update dependency @​types/node to ^20.17.13 by @​renovate in https://github.com/secretlint/secretlint/pull/955
• chore(deps): update dependency @​types/node to ^20.17.14 by @​renovate in https://github.com/secretlint/secretlint/pull/956
• chore(deps): update dependency @​types/node to ^20.17.16 by @​renovate in https://github.com/secretlint/secretlint/pull/957
• chore(deps): update dependency @​types/node to ^20.17.17 by @​renovate in https://github.com/secretlint/secretlint/pull/958
• chore(deps): bump elliptic from 6.6.0 to 6.6.1 by @​dependabot in https://github.com/secretlint/secretlint/pull/959
• fix(deps): update dependency globby to ^14.1.0 by @​renovate in https://github.com/secretlint/secretlint/pull/960
• chore(deps): update dependency @​types/node to ^20.17.18 by @​renovate in https://github.com/secretlint/secretlint/pull/962
• chore(deps): update dependency @​types/node to ^20.17.19 by @​renovate in https://github.com/secretlint/secretlint/pull/963

New Contributors

• @​Zamiell made their first contribution in https://github.com/secretlint/secretlint/pull/936

Full Changelog: secretlint/secretlint@v9.0.0...v9.1.0

vitest-dev/vitest (@​vitest/coverage-v8)

v2.1.9

Compare Source

This release includes security patches for:

• Browser mode serves arbitrary files | CVE-2025-24963
• Remote Code Execution when accessing a malicious website while Vitest API server is listening | CVE-2025-24964

   🐞 Bug Fixes

• backport https://github.com/vitest-dev/vitest/issues/7317 to v2 - by @​hi-ogawa in https://github.com/vitest-dev/vitest/pull/7318
• (backport #​7340 to v2) restrict served files from /__screenshot-error - by @​hi-ogawa in https://github.com/vitest-dev/vitest/pull/7343

    View changes on GitHub

axios/axios (axios)

v1.8.2

Compare Source

Bug Fixes

• http-adapter: add allowAbsoluteUrls to path building (#​6810) (fb8eec2)

Contributors to this release

• Fasoro-Joseph Alexander

v1.8.1

Compare Source

Bug Fixes

• utils: move generateString to platform utils to avoid importing crypto module into client builds; (#​6789) (36a5a62)

Contributors to this release

• Dmitriy Mozgovoy

v1.8.0

Compare Source

Bug Fixes

• examples: application crashed when navigating examples in browser (#​5938) (1260ded)
• missing word in SUPPORT_QUESTION.yml (#​6757) (1f890b1)
• utils: replace getRandomValues with crypto module (#​6788) (23a25af)

Features

• Add config for ignoring absolute URLs (#​5902) (#​6192) (32c7bcc)

Reverts

• Revert "chore: expose fromDataToStream to be consumable (#​6731)" (#​6732) (1317261), closes #​6731 #​6732

BREAKING CHANGES

• code relying on the above will now combine the URLs instead of prefer request URL

• feat: add config option for allowing absolute URLs

• fix: add default value for allowAbsoluteUrls in buildFullPath

• fix: typo in flow control when setting allowAbsoluteUrls

Contributors to this release

• Michael Toscano
• Willian Agostini
• Naron
• shravan || श्रvan
• Justin Dhillon
• yionr
• Shin'ya Ueoka
• Dan Dascalescu
• Nitin Ramnani
• Shay Molcho
• Jay
• fancy45daddy
• Habip Akyol
• Bailey Lissington
• Bernardo da Eira Duarte
• Shivam Batham
• Lipin Kariappa

1.7.9 (2024-12-04)

Reverts

• Revert "fix(types): export CJS types from ESM (#​6218)" (#​6729) (c44d2f2), closes #​6218 #​6729

Contributors to this release

• Jay

1.7.8 (2024-11-25)

Bug Fixes

• allow passing a callback as paramsSerializer to buildURL (#​6680) (eac4619)
• core: fixed config merging bug (#​6668) (5d99fe4)
• fixed width form to not shrink after 'Send Request' button is clicked (#​6644) (7ccd5fd)
• http: add support for File objects as payload in http adapter (#​6588) (#​6605) (6841d8d)
• http: fixed proxy-from-env module import (#​5222) (12b3295)
• http: use globalThis.TextEncoder when available (#​6634) (df956d1)
• ios11 breaks when build (#​6608) (7638952)
• types: add missing types for mergeConfig function (#​6590) (00de614)
• types: export CJS types from ESM (#​6218) (c71811b)
• updated stream aborted error message to be more clear (#​6615) (cc3217a)
• use URL API instead of DOM to fix a potential vulnerability warning; (#​6714) (0a8d6e1)

Contributors to this release

• Remco Haszing
• Jay
• Aayush Yadav
• Dmitriy Mozgovoy
• Ell Bradshaw
• Amit Saini
• Tommaso Paulon
• Akki
• Sampo Silvennoinen
• Kasper Isager Dalsgarð
• Christian Clauss
• Pavan Welihinda
• Taylor Flatt
• Kenzo Wada
• Ngole Lawson
• Haven
• Shrivali Dutt
• Henco Appel

1.7.7 (2024-08-31)

Bug Fixes

• fetch: fix stream handling in Safari by fallback to using a stream reader instead of an async iterator; (#​6584) (d198085)
• http: fixed support for IPv6 literal strings in url (#​5731) (364993f)

Contributors to this release

• Rishi556
• Dmitriy Mozgovoy

1.7.6 (2024-08-30)

Bug Fixes

• fetch: fix content length calculation for FormData payload; (#​6524) (085f568)
• fetch: optimize signals composing logic; (#​6582) (df9889b)

Contributors to this release

• Dmitriy Mozgovoy
• Jacques Germishuys
• kuroino721

1.7.5 (2024-08-23)

Bug Fixes

• adapter: fix undefined reference to hasBrowserEnv (#​6572) (7004707)
• core: add the missed implementation of AxiosError#status property; (#​6573) (6700a8a)
• core: fix ReferenceError: navigator is not defined for custom environments; (#​6567) (fed1a4b)
• fetch: fix credentials handling in Cloudflare workers (#​6533) (550d885)

Contributors to this release

• Dmitriy Mozgovoy
• Antonin Bas
• Hans Otto Wirtz

1.7.4 (2024-08-13)

Bug Fixes

• sec: CVE-2024-39338 (#​6539) (#​6543) (6b6b605)
• sec: disregard protocol-relative URL to remediate SSRF (#​6539) (07a661a)

Contributors to this release

• Lev Pachmanov
• Đỗ Trọng Hải

1.7.3 (2024-08-01)

Bug Fixes

• adapter: fix progress event emitting; (#​6518) (e3c76fc)
• fetch: fix withCredentials request config (#​6505) (85d4d0e)
• xhr: return original config on errors from XHR adapter (#​6515) (8966ee7)

Contributors to this release

• Dmitriy Mozgovoy
• Valerii Sidorenko
• prianYu

1.7.2 (2024-05-21)

Bug Fixes

• fetch: enhance fetch API detection; (#​6413) (4f79aef)

Contributors to this release

• Dmitriy Mozgovoy

1.7.1 (2024-05-20)

Bug Fixes

• fetch: fixed ReferenceError issue when TextEncoder is not available in the environment; (#​6410) (733f15f)

Contributors to this release

• Dmitriy Mozgovoy

crate-ci/typos (crate-ci/typos)

v1.30.1

Compare Source

[1.30.1] - 2025-03-04

Features

• (action) Create v1 tag

v1.30.0

Compare Source

[1.30.0] - 2025-03-01

Features

• Updated the dictionary with the February 2025 changes

v1.29.10

Compare Source

[1.29.10] - 2025-02-25

Fixes

• Also correct contaminent as contaminant

v1.29.9

Compare Source

[1.29.9] - 2025-02-20

Fixes

• (action) Correctly get binary for some aarch64 systems

v1.29.8

Compare Source

[1.29.8] - 2025-02-19

Features

• Attempt to build Linux aarch64 binaries

v1.29.7

Compare Source

[1.29.7] - 2025-02-13

Fixes

• Don't correct implementors

v1.29.6

Compare Source

[1.29.6] - 2025-02-13

Features

• Updated the dictionary with the January 2025 changes

v1.29.5

Compare Source

[1.29.5] - 2025-01-30

Internal

• Update a dependency

v1.29.4

Compare Source

[1.29.4] - 2025-01-03

v1.29.3

Compare Source

[1.29.3] - 2025-01-02

v1.29.2

Compare Source

v1.29.1

Compare Source

[1.29.1] - 2025-01-02

Fixes

• Don't correct deriver

NaturalIntelligence/fast-xml-parser (fast-xml-parser)

v4.5.3

Compare Source

v4.5.2

Compare Source

jshemas/openGraphScraper (open-graph-scraper)

v6.9.0

Compare Source

• Add jsonLDOptions.throwOnJSONParseError and change default behavior to not throw on JSON-LD string parse errors

v6.8.4

Compare Source

• Normalize content-type header check for case insensitivity
• Updating dependencies

privatenumber/tsx (tsx)

v4.19.3

Compare Source

Bug Fixes

• upgrade esbuild to ~0.25.0 to address vuln report (#​698) (e04e6c6)

---

This release is also available on:

• npm package (@​latest dist-tag)

microsoft/TypeScript (typescript)

v5.8.2

Compare Source

v5.7.3: TypeScript 5.7.3

Compare Source

For release notes, check out the release announcement.

• fixed issues query for Typescript 5.7.0 (Beta).
• fixed issues query for Typescript 5.7.1 (RC).
• fixed issues query for Typescript 5.7.2 (Stable).
• fixed issues query for Typescript 5.7.3 (Stable).

Downloads are available on npm

---

Configuration

📅 Schedule: Branch creation - "* 0-3 1 * *" in timezone Asia/Tokyo, Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.