Bump the all group across 1 directory with 8 updates

[dependabot]

Bumps the all group with 8 updates in the / directory:

Package	From	To
ronin	4.3.1	4.4.0
@biomejs/biome	1.9.2	1.9.4
@types/bun	1.1.8	1.1.12
bunchee	5.4.0	5.6.0
hono	4.5.11	4.6.7
husky	9.1.5	9.1.6
msw	2.4.3	2.5.2
typescript	5.5.4	5.6.3

Updates ronin from 4.3.1 to 4.4.0

Release notes

Sourced from ronin's releases.

4.4.0

What's Changed

• Fixed types for queries using an array of with queries by @​NuroDev in ronin-co/client#129
• Added Biome and Removed Prettier & ESLint by @​colodenn in ronin-co/client#130
• Allow for nesting queries by @​leo in ronin-co/client#140

Full Changelog: ronin-co/client@4.3.1...4.4.0

Commits

• a28a7c1 4.4.0
• b9eabb2 Allow for nesting queries (#140)
• f02aefa Bump biome and extended vscode settings (#134)
• 9666198 Removed cache from workflow (#133)
• 28c7415 Added Biome and Removed Prettier & ESLint (#130)
• 90315f7 Fixed types for queries using an array of with queries (#129)
• See full diff in compare view

Updates @biomejs/biome from 1.9.2 to 1.9.4

Release notes

Sourced from @​biomejs/biome's releases.

CLI v1.9.4

Analyzer

Bug fixes

• Improved the message for unused suppression comments. Contributed by @​dyc3

• Fix #4228, where the rule a11y/noInteractiveElementToNoninteractiveRole incorrectly reports a role for non-interactive elements. Contributed by @​eryue0220

• noSuspiciousSemicolonInJsx now catches suspicious semicolons in React fragments. Contributed by @​vasucp1207

CLI

Enhancements

• The --summary reporter now reports parsing diagnostics too. Contributed by @​ematipico

• Improved performance of GritQL queries by roughly 25-30%. Contributed by @​arendjr

Configuration

Bug fixes

• Fix an issue where the JSON schema marked lint rules options as mandatory. Contributed by @​ematipico

Formatter

Bug fixes

• Fix #4121. Respect line width when printing multiline strings. Contributed by @​ah-yu

Linter

New features

• Add useGuardForIn. Contributed by @​fireairforce
• Add noDocumentCookie. Contributed by @​tunamaguro
• Add noDocumentImportInPage. Contributed by @​kaioduarte
• Add noDuplicateProperties. Contributed by @​togami2864
• Add noHeadElement. Contributed by @​kaioduarte
• Add noHeadImportInDocument. Contributed by @​kaioduarte
• Add noImgElement. Contributed by @​kaioduarte
• Add noUnknownTypeSelector. Contributed by @​Kazuhiro-Mimaki
• Add useAtIndex. Contributed by @​GunseiKPaseri
• Add noUselessStringRaw. Contributed by @​fireairforce
• Add nursery/useCollapsedIf. Contributed by @​siketyan
• Add useGoogleFontDisplay. Contributed by @​kaioduarte

Bug Fixes

... (truncated)

Changelog

Sourced from @​biomejs/biome's changelog.

v1.9.4 (2024-10-17)

Analyzer

Bug fixes

• Implement GraphQL suppression action. Contributed by @​vohoanglong0107

• Improved the message for unused suppression comments. Contributed by @​dyc3

• Fix #4228, where the rule a11y/noInteractiveElementToNoninteractiveRole incorrectly reports a role for non-interactive elements. Contributed by @​eryue0220

• noSuspiciousSemicolonInJsx now catches suspicious semicolons in React fragments. Contributed by @​vasucp1207

• The syntax rule noTypeOnlyImportAttributes now ignores .cts files (#4361).

  Since TypeScript 5.3, type-only imports can be associated to an import attribute in CommonJS-enabled files. See the TypeScript docs.

  The following code is no longer reported as a syntax error:

  import type { TypeFromRequire } from "pkg" with {
      "resolution-mode": "require"
  };

  Note that this is only allowed in files ending with the cts extension.

  Contributed by @​Conaclos

CLI

Enhancements

• The --summary reporter now reports parsing diagnostics too. Contributed by @​ematipico

• Improved performance of GritQL queries by roughly 25-30%. Contributed by @​arendjr

Configuration

Bug fixes

• Fix an issue where the JSON schema marked lint rules options as mandatory. Contributed by @​ematipico

Editors

Formatter

Bug fixes

... (truncated)

Commits

• fa93a14 release: v1.9.4 (#4320)
• 2a05cd4 feat(lint): add useGoogleFontDisplay rule (#4264)
• bbb93b9 feat(lint): useCollapsedIf JS lint rule (#4179)
• 561b54c feat(linter): implement noUselessStringRaw (#4263)
• 5b7d158 feat(linter): implement noDuplicateProperties (#4029)
• 2342984 feat(lint): add noDocumentImportInPage rule (#4265)
• 3cf20eb chore(linter): rename useExplicitFunctionReturnType to `useExplicit… (#4261)
• 970f498 feat(useGuardForIn): add rule (#4104)
• 2e5b656 feat(lint): add noDocumentCookie rule (#4204)
• 3364640 feat(lint): add rule useAtIndex (#4120)
• Additional commits viewable in compare view

Updates @types/bun from 1.1.8 to 1.1.12

Commits

• See full diff in compare view

Updates bunchee from 5.4.0 to 5.6.0

Release notes

Sourced from bunchee's releases.

v5.6.0

Feature

• Support browserlists from package.json by @​huozhi in huozhi/bunchee#588

Patches

• fix: skip spinner in non TTY environment by @​huozhi in huozhi/bunchee#586

Full Changelog: huozhi/bunchee@v5.5.1...v5.6.0

v5.5.1

Patches

• chore: bump rollup version by @​himself65 in huozhi/bunchee#582
• chore: bump rollup deps

Full Changelog: huozhi/bunchee@v5.5.0...v5.5.1

v5.5.0

Features

• feat: error on bad type export by @​huozhi in huozhi/bunchee#578
• fix: support more special fields of target runtime by @​himself65 in huozhi/bunchee#579

Misc

• refactor: move rollup related configs into a separate config by @​huozhi in huozhi/bunchee#576

Full Changelog: huozhi/bunchee@v5.4.0...v5.5.0

Commits

• cf109bc 5.6.0
• 104d5ba Support browserlists from package.json (#588)
• dd0e484 fix: skip spinner in non tty environment (#586)
• 7e9ccad refactor: use yargs for CLI (#585)
• 920b439 5.5.1
• c3b431c Upgrade dependencies
• 6a59f5a chore: bump rollup-preserve-directives plugin
• bbb0b3b chore: bump rollup version (#582)
• b85c25a test: add test for js with tsconfig error (#581)
• 5c3bd6d 5.5.0
• Additional commits viewable in compare view

Updates hono from 4.5.11 to 4.6.7

Release notes

Sourced from hono's releases.

v4.6.7

What's Changed

• fix(vercel): remove requestContext by @​yusukebe in honojs/hono#3549
• feat(jwt): Support custom secret keys for signing JWTs by @​kaandok in honojs/hono#3546
• feat(ws): Make WebSocket adapter more changeable by @​nakasyou in honojs/hono#3531
• perf(router): improve performance of router by @​EdamAme-x in honojs/hono#3526

New Contributors

• @​kaandok made their first contribution in honojs/hono#3546

Full Changelog: honojs/hono@v4.6.6...v4.6.7

v4.6.6

What's Changed

• docs(powered-by): add JSDoc by @​yusukebe in honojs/hono#3520
• chore: podman support for devcontainer by @​marcomuser in honojs/hono#3529
• refactor(secure-headers): refine secureHeadersNonce init by @​imcotton in honojs/hono#3535
• fix(serve-static): silence NotFound warning on Deno by @​pablo-abc in honojs/hono#3542
• fix(client): return query params in $url by @​alex-grover in honojs/hono#3541

New Contributors

• @​marcomuser made their first contribution in honojs/hono#3529
• @​imcotton made their first contribution in honojs/hono#3535
• @​pablo-abc made their first contribution in honojs/hono#3542
• @​alex-grover made their first contribution in honojs/hono#3541

Full Changelog: honojs/hono@v4.6.5...v4.6.6

v4.6.5

Security fix for CSRF Protection Middleware

This release includes a security fix for CSRF Protection Middleware. If you are using CSRF Protection Middleware, please upgrade this hono package immediately.

Before this release, a request without a Content-Type header can bypass the protection. This fix does not allow it. See: GHSA-2234-fmw7-43wr

What's Changed

• perf(types): replace intersection with union to get better perf by @​m-shaka in honojs/hono#3443
• ci: use Deno v2 by @​yusukebe in honojs/hono#3506
• ci: use Deno v2 for a test running for deno by @​nakasyou in honojs/hono#3509
• fix(types): rm ExcludeEmptyObject to fix massively increased type instantiations by @​m-shaka in honojs/hono#3507
• fix(cors): avoid setting Access-Control-Allow-Origin if there is no matching origin by @​uki00a in honojs/hono#3510
• feat(powered-by): optional server name by @​PatrickJS in honojs/hono#3492
• fix(factory): revert PR #3498 by @​yusukebe in honojs/hono#3515
• fix(build): remove private fields by @​nakasyou in honojs/hono#3514

New Contributors

• @​uki00a made their first contribution in honojs/hono#3510
• @​PatrickJS made their first contribution in honojs/hono#3492

Full Changelog: honojs/hono@v4.6.4...v4.6.5

... (truncated)

Commits

• 7e11832 v4.6.7
• 10a5e65 perf(router): improve performance of router (#3526)
• 234b083 feat(ws): Make WebSocket adapter more changeable (#3531)
• 0a99bd3 feat(jwt): Support custom secret keys for signing JWTs (#3546)
• 7735f2f fix(vercel): remove requestContext (#3549)
• 631c001 v4.6.6
• 3d8abbc fix(client): return query params in $url (#3541)
• 267186d fix(serve-static): silence NotFound warning on Deno (#3542)
• 15938b4 refactor(secure-headers): refine secureHeadersNonce init (#3535)
• f8664b0 chore: podman support for devcontainer (#3529)
• Additional commits viewable in compare view

Updates husky from 9.1.5 to 9.1.6

Release notes

Sourced from husky's releases.

v9.1.6

What's Changed

• Fix issue where example pre-commit file is generated incorrectly by @​dexmlee in typicode/husky#1519

New Contributors

• @​OlegKipchatov made their first contribution in typicode/husky#1495
• @​Byron2016 made their first contribution in typicode/husky#1499
• @​dexmlee made their first contribution in typicode/husky#1519

Full Changelog: typicode/husky@v9.1.5...v9.1.6

Commits

• a2d942a 9.1.6
• b4465ed fix: add parens around the null coalescing operator to fix issues when npm_co...
• 3b3e7f1 docs(spanish): improve spanish translation (#1504)
• dcf3aed dosc: repair support Spanish sponsors links (#1500)
• c3afd5f docs: support Spanish documentation (#1499)
• c5f4f48 docs: support Russian documentation (#1495)
• See full diff in compare view

Updates msw from 2.4.3 to 2.5.2

Release notes

Sourced from msw's releases.

v2.5.2 (2024-10-27)

Bug Fixes

• enable provenance for publishing (#2334) (e9b0636c2c50c2aa9fc8d522469fbd96cfd7ccf0) @​kettanaito

v2.5.1 (2024-10-24)

Bug Fixes

• update@inquirer/confirm requirement to 5.0.0 (#2325) (b65c0a8ffac0a72b7d9980768f8c73e2d763f863) @​greysteil @​kettanaito

v2.5.0 (2024-10-22)

Features

• isolate parent and child frames when handling requests (#2324) (a1a81ba00170bbcdfc6f64baa4a3630e153d77b3) @​kettanaito

v2.4.13 (2024-10-22)

Bug Fixes

• update @inquirer/confirm to 4.0 (#2300) (0cf9cce8da519e7bd5a8c8ffcdab348ffb55a3ec) @​greysteil @​kettanaito

v2.4.12 (2024-10-21)

Bug Fixes

• node: preserve headers instanceof when recording raw headers (#2321) (a58a300687a48e13c0268403a71183cf7825f748) @​paoloricciuti

v2.4.11 (2024-10-14)

Bug Fixes

• update dependencies (#2313) (8f68f0affd65137d86e77451bb9a3cbed4979d36) @​kettanaito

v2.4.10 (2024-10-11)

Bug Fixes

• setupWorker: perform worker update in the background (#2311) (8e40724cd3e315e0df703cce8d9f2cf7ab6cdc73) @​kettanaito

v2.4.9 (2024-09-20)

Bug Fixes

• ClientRequest: support Request as init when recording raw headers (#2293) (bf982eaa70ddd5d08706b8877ceb6c6c2517f660) @​kettanaito

v2.4.8 (2024-09-17)

... (truncated)

Commits

• e32b64d chore(release): v2.5.2
• e9b0636 fix: enable provenance for publishing (#2334)
• 16c7c10 docs: add decision on linting the worker script (#2333)
• 9dc2d71 chore(release): v2.5.1
• b65c0a8 fix: update@inquirer/confirm requirement to 5.0.0 (#2325)
• 8073bbe chore: update logo to correct svg (#2327)
• 8cf74d8 chore(release): v2.5.0
• a1a81ba feat: isolate parent and child frames when handling requests (#2324)
• c949d19 chore(release): v2.4.13
• 0cf9cce fix: update @inquirer/confirm to 4.0 (#2300)
• Additional commits viewable in compare view

Updates typescript from 5.5.4 to 5.6.3

Release notes

Sourced from typescript's releases.

TypeScript 5.6.3

For release notes, check out the release announcement.

For the complete list of fixed issues, check out the

• fixed issues query for Typescript 5.6.0 (Beta).
• fixed issues query for Typescript 5.6.1 (RC).
• fixed issues query for Typescript 5.6.2 (Stable).
• fixed issues query for Typescript 5.6.3 (Stable).

Downloads are available on:

• npm
• NuGet package

TypeScript 5.6

For release notes, check out the release announcement.

For the complete list of fixed issues, check out the

• fixed issues query for Typescript 5.6.0 (Beta).
• fixed issues query for Typescript 5.6.1 (RC).
• fixed issues query for Typescript 5.6.2 (Stable).

Downloads are available on:

• npm
• NuGet package

TypeScript 5.6 RC

For release notes, check out the release announcement.

For the complete list of fixed issues, check out the

• fixed issues query for TypeScript v5.6.1 (RC).
• fixed issues query for TypeScript v5.6.0 (Beta).

Downloads are available on:

• npm

TypeScript 5.6 Beta

For release notes, check out the release announcement.

For the complete list of fixed issues, check out the

• fixed issues query for Typescript 5.6.0 (Beta).

... (truncated)

Commits

• d48a5cf Bump version to 5.6.3 and LKG
• fefa70a 🤖 Pick PR #60083 (Don't issue implicit any when obtai...) into release-5.6 (#...
• ff71692 [release-5.6] Remove tsbuildInfo specification error now that we need it for ...
• 1f44dcf 🤖 Pick PR #60157 (fix automatic type acquisition) into release-5.6 (#60169)
• a7e3374 Bump version to 5.6.2 and LKG
• 2063357 🤖 Pick PR #59708 (LEGO: Pull request from lego/hb_537...) into release-5.6 (#...
• 4fe7e41 🤖 Pick PR #59670 (fix(59649): ts Move to a new file d...) into release-5.6 (#...
• 1a03e53 🤖 Pick PR #59761 (this can be nullish) into release-5.6 (#59762)
• 6212132 Update LKG
• bbb5faf 🤖 Pick PR #59542 (Fixing delay caused in vscode due t...) into release-5.6 (#...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

Released an experimental package:

bun add hono-ronin@dependabot-npm-and-yarn-all-1d9be80b52-experimental

This package will be removed after the pull request has been merged.

[leo]

@dependabot close

[dependabot]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml