chore(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Type	Update	Change	OpenSSF
lint-staged	devDependencies	patch	15.2.7 -> 15.2.10
pnpm (source)	packageManager	minor	9.6.0+sha512.38dc6fba8dba35b39340b9700112c2fe1e12f10b17134715a4aa98ccf7bb035e76fd981cf0bb384dfa98f8d6af5481c2bef2f4266a24bfa20c34eb7147ce0b5e -> 9.10.0
renovate (source)	dependencies	minor	38.18.1 -> 38.77.3

---

Release Notes

lint-staged/lint-staged (lint-staged)

v15.2.10

Compare Source

Patch Changes

• #​1471 e3f283b Thanks @​iiroj! - Update minor dependencies, including micromatch@~4.0.8.

v15.2.9

Compare Source

Patch Changes

• #​1463 b69ce2d Thanks @​iiroj! - Set the maximum number of event listeners to the number of tasks. This should silence the console warning MaxListenersExceededWarning: Possible EventEmitter memory leak detected.

v15.2.8

Compare Source

Patch Changes

• f0480f0 Thanks @​iiroj! - In the previous version the native git rev-parse --show-toplevel command was taken into use for resolving the current git repo root. This version switched the --show-toplevel flag with --show-cdup, because on Git installed via MSYS2 the former was returning absolute paths that do not work with Node.js child_process. The new flag returns a path relative to the working directory, avoiding the issue.

  The GitHub Actions workflow has been updated to install Git via MSYS2, to ensure better future compatibility; using the default Git binary in the GitHub Actions runner was working correctly even with MSYS2.

pnpm/pnpm (pnpm)

v9.10.0: pnpm 9.10

Compare Source

Minor Changes

• Support for a new CLI flag, --exclude-peers, added to the list and why commands. When --exclude-peers is used, peer dependencies are not printed in the results, but dependencies of peer dependencies are still scanned #​8506.

• Added a new setting to package.json at pnpm.auditConfig.ignoreGhsas for ignoring vulnerabilities by their GHSA code #​6838.

  For instance:

  {
    "pnpm": {
      "auditConfig": {
        "ignoreGhsas": [
          "GHSA-42xw-2xvc-qx8m",
          "GHSA-4w2v-q235-vp99",
          "GHSA-cph5-m8f7-6c5x",
          "GHSA-vh95-rmgr-6w4m"
        ]
      }
    }
  }

Patch Changes

• Throw an exception if pnpm switches to the same version of itself.
• Reduce memory usage during peer dependencies resolution.

Platinum Sponsors

Gold Sponsors

Our Silver Sponsors

v9.9.0

Compare Source

v9.8.0

Compare Source

v9.7.1

Compare Source

v9.7.0: pnpm 9.7

Compare Source

Minor Changes

• Added pnpm version management. If the manage-package-manager-versions setting is set to true, pnpm will switch to the version specified in the packageManager field of package.json #​8363. This is the same field used by Corepack. Example:

  {
    "packageManager": "pnpm@9.3.0"
  }

• Added the ability to apply patch to all versions #​8337.

  If the key of pnpm.patchedDependencies is a package name without a version (e.g. pkg), pnpm will attempt to apply the patch to all versions of the package. Failures will be skipped. If there's only one version of pkg installed, pnpm patch pkg and subsequent pnpm patch-commit $edit_dir will create an entry named pkg in pnpm.patchedDependencies. And pnpm will attempt to apply this patch to other versions of pkg in the future.

• Change the default edit dir location when running pnpm patch from a temporary directory to node_modules/.pnpm_patches/pkg[@​version] to allow the code editor to open the edit dir in the same file tree as the main project #​8379.

• Substitute environment variables in config keys #​6679.

Patch Changes

• pnpm install should run node-gyp rebuild if the project has a binding.gyp file even if the project doesn't have an install script #​8293.
• Print warnings to stderr #​8342.
• Peer dependencies of optional peer dependencies should be automatically installed #​8323.

Platinum Sponsors

Gold Sponsors

Our Silver Sponsors

renovatebot/renovate (renovate)

v38.77.3

Compare Source

v38.77.2

Compare Source

v38.77.1

Compare Source

v38.77.0

Compare Source

Features

• deps: update ghcr.io/renovatebot/base-image docker tag to v7.24.0 (#​31346) (c45c8d6)

Miscellaneous Chores

• deps: update dependency @​types/node to v20.16.5 (#​31345) (c447975)

v38.76.1

Compare Source

v38.76.0

Compare Source

Features

• presets/workarounds: capture more Red Hat UBI image names (#​31341) (b6694ed)

Bug Fixes

• deps: update ghcr.io/renovatebot/base-image docker tag to v7.23.8 (#​31337) (b115ccf)

Documentation

• fix code of conduct typo (#​31335) (5e51eee)

v38.75.0

Compare Source

v38.74.1

Compare Source

v38.74.0

Compare Source

v38.73.7

Compare Source

v38.73.6

Compare Source

Bug Fixes

• dashboard: mend app dashboard was not showing links for closed-ignored PRs (#​31308) (85f1b8e)

Miscellaneous Chores

• deps: update dependency eslint-plugin-import to v2.30.0 (#​31296) (d0ff9a6)
• deps: update dependency pdm to v2.18.2 (#​31304) (e697fd6)

v38.73.5

Compare Source

v38.73.4

Compare Source

v38.73.3

Compare Source

Bug Fixes

• deps: update ghcr.io/renovatebot/base-image docker tag to v7.23.3 (#​31295) (1bce2b7)

Miscellaneous Chores

• deps: update python docker tag to v3.12.6 (#​31294) (ea5f660)

v38.73.2

Compare Source

v38.73.1

Compare Source

v38.73.0

Compare Source

v38.72.2

Compare Source

v38.72.1

Compare Source

v38.72.0

Compare Source

Features

• manager: add bun-version manager (#​29998) (e064c5e)

Code Refactoring

• Fix return type for filterInternalChecks function (#​31259) (a91d646)

v38.71.0

Compare Source

v38.70.3

Compare Source

v38.70.2

Compare Source

Bug Fixes

• deps: update ghcr.io/containerbase/sidecar docker tag to v11.11.11 (#​31251) (10537af)

v38.70.1

Compare Source

v38.70.0

Compare Source

Features

• deps: update ghcr.io/renovatebot/base-image docker tag to v7.22.0 (#​31242) (da4964a)

Miscellaneous Chores

• deps: update python:3.12 docker digest to b7552a9 (#​31241) (b935f39)

v38.69.0

Compare Source

v38.68.1

Compare Source

v38.68.0

Compare Source

v38.67.5

Compare Source

v38.67.4

Compare Source

v38.67.3

Compare Source

v38.67.2

Compare Source

v38.67.1

Compare Source

Bug Fixes

• managers/pep621: replace missing depName group with managerData (#​31181) (7a65c10)

v38.67.0

Compare Source

v38.66.1

Compare Source

Bug Fixes

• deps: update ghcr.io/renovatebot/base-image docker tag to v7.21.4 (#​31183) (6df889a)

v38.66.0

Compare Source

Features

• workers/repository: Update package files in the same order they're extracted (#​28671) (4cc3107)

v38.65.0

Compare Source

v38.64.2

Compare Source

v38.64.1

Compare Source

v38.64.0

Compare Source

Features

• deps: update ghcr.io/renovatebot/base-image docker tag to v7.21.2 (#​31086) (3f2637b)

v38.63.0

Compare Source

Features

• presets/workarounds: Support bellsoft/liberica-runtime-container Image (#​31082) (9449f55)

Bug Fixes

• datasource/orb: retrieve more releases (#​31165) (08a08ec)

v38.62.0

Compare Source

v38.61.1

Compare Source

Miscellaneous Chores

• deps: update dependency eslint-import-resolver-typescript to v3.6.3 (#​31157) (576b7b3)

Build System

• deps: update dependency emoji-regex to v10.4.0 (#​31158) (f6b5455)

v38.61.0

Compare Source

Features

• monorepo: Add lerna-lite repository (#​31150) (7d08f22)

Bug Fixes

• deps: update ghcr.io/containerbase/sidecar docker tag to v11.11.9 (#​31154) (25fd14b)

Miscellaneous Chores

• deps: update dependency @​types/eslint to v8.56.12 (#​31152) (542e45b)
• deps: update ghcr.io/containerbase/devcontainer docker tag to v11.11.9 (#​31153) (45d7855)

v38.60.0

Compare Source

v38.59.3

Compare Source

v38.59.2

Compare Source

Bug Fixes

• vulnerabilities: do not force exact patch version for NuGet datasource (#​31127) (fbdb8c2)

Miscellaneous Chores

• deps: update dependency mkdocs-material to v9.5.34 (#​31135) (2f7b6ff)

v38.59.1

Compare Source

v38.59.0

Compare Source

Features

• cache: Create Cacheable wrapper for values (#​31108) (fad5e98)

Documentation

• add info for dependencyDashboardOSVVulnerabilitySummary (#​31130) (4102f07)
• Use codeBlock (#​31132) (de01497)

v38.58.2

Compare Source

Build System

• deps: update dependency re2 to v1.21.4 (#​31131) (920cfb0)

v38.58.1

Compare Source

Documentation

• gomod: clarify major updates limitations (#​31119) (0831777)

Miscellaneous Chores

• deps: update actions/upload-artifact action to v4.4.0 (#​31126) (36fff28)
• deps: update dependency ts-jest to v29.2.5 (#​31125) (4f9a8f0)

Build System

• deps: update dependency tslib to v2.7.0 (#​31128) (f3a9f46)

v38.58.0

Compare Source

Features

• replacements: add eslint-plugin-eslint-comments replacement (#​31103) (deefa65)

v38.57.3

Compare Source

Build System

• deps: update opentelemetry-js monorepo (#​31109) (99cb52e)

v38.57.2

Compare Source

Miscellaneous Chores

• deps: update github/codeql-action action to v3.26.6 (#​31099) (bce40c3)
• deps: update pnpm to v9.8.0 (#​31100) (097484c)
• deps: update pnpm to v9.9.0 (#​31104) (1971598)
• manager/terraform: increased lock update logging (#​31094) (3fe0f78)

Build System

• deps: update dependency @​opentelemetry/semantic-conventions to v1.26.0 (#​31107) (0d2a273)

v38.57.1

Compare Source

Bug Fixes

• presets: wrong package matchers (#​31095) (5f7d22e)

Miscellaneous Chores

• deps: update slackapi/slack-github-action action to v1.27.0 (#​31088) (36f66cf)

Code Refactoring

• data validation using schema (#​30797) (d1af677)
• github: use github.com (#​31025) (fbe4dba)

v38.57.0

Compare Source

Features

• datasource: add debian datasource (#​30071) (c3958c9)
• deps: update ghcr.io/renovatebot/base-image docker tag to v7.19.0 (#​31085) (8db60f6)

v38.56.4

Compare Source

Bug Fixes

• package-rules: migrate matchers with string values (#​31083) (ded9a7b)

Documentation

• code of conduct: rewrite (#​31077) (0bc5cc1)

v38.56.3

Compare Source

Bug Fixes

• deps: update ghcr.io/renovatebot/base-image docker tag to v7.18.2 (#​31076) (04e14e2)

Build System

• deps: update dependency better-sqlite3 to v11.2.1 (#​31072) (bb6fba2)

v38.56.2

Compare Source

Documentation

• contributing: link to code of conduct (#​31074) (5b44090)

Build System

• deps: update dependency better-sqlite3 to v11.2.0 (#​31070) (16602e3)

v38.56.1

Compare Source

Bug Fixes

• maven: Return isPrivate flag for default repo (#​31061) (523d80e)

Documentation

• Update Poetry versioning references (#​31051) (271b3e3)

Code Refactoring

• terraform-provider: Use single cache namespace (#​31054) (bedddd1)

v38.56.0

Compare Source

Features

• deps: update ghcr.io/renovatebot/base-image docker tag to v7.18.0 (#​31063) (c3d4cc0)

Miscellaneous Chores

• deps: update otel/opentelemetry-collector-contrib docker tag to v0.108.0 (#​31062) (afe2240)

v38.55.5

Compare Source

Bug Fixes

• go: Revert private module URL changes (#​31055) (6899eb0)

Documentation

• Update CODE_OF_CONDUCT.md (#​31048) (c89e14c)

Miscellaneous Chores

• deps: update dependency husky to v9.1.5 (#​31050) (fa5ada7)

Code Refactoring

• cdnjs: Use single cache namespace (#​31032) (72a3b4c)
• galaxy-collection: Use single cache namespace (#​31036) (85c1163)
• gitlab-tags: Use single cache namespace (#​31038) (308ccdc)
• hermit: Use single cache namespace (#​31052) (2e48977)
• packagist: Use single cache namespace (#​31053) (c7026f6)

v38.55.4

Compare Source

Bug Fixes

• helmfile: url joiner is broken, use upath instead (#​31008) (ad64f11)

v38.55.3

Compare Source

Miscellaneous Chores

• deps: update containerbase/internal-tools action to v3.4.10 (#​31041) (9dbe905)
• deps: update dependency nock to v13.5.5 (#​31045) (446f6fc)

Code Refactoring

• conan: Use single cache namespace (#​31033) (51ca695)
• deno: Use single cache namespace (#​31034) (674b757)
• github: Use single cache namespace for release attachments (#​31037) (ddcef9c)
• go: Use single cache namespace (#​31039) (c2f2d4f)

Build System

• deps: update dependency google-auth-library to v9.14.0 (#​31046) (11fd0c9)

v38.55.2

Compare Source

Bug Fixes

• deps: update ghcr.io/renovatebot/base-image docker tag to v7.17.2 (#​31040) (5954450)

v38.55.1

Compare Source

Build System

• deps: update dependency @​renovatebot/detect-tools to v1.1.0 (#​31028) (976a66b)

v38.55.0

Compare Source

Features

• presets/workarounds: add rancher/rke2 versioning (#​31020) (9aeb77c)

Bug Fixes

• datasource/github-runners: deprecate macOS 12 runners (#​30931) (84dfce0)

Documentation

• docker: rewrite using short-lived access tokens (#​30822) (f279c52)
• nuget: explain authenticated feeds on Azure DevOps need right username (#​29987) (3ee49b6)

v38.54.1

Compare Source

Bug Fixes

• deps: update ghcr.io/renovatebot/base-image docker tag to v7.17.1 (#​31024) (77d8099)

v38.54.0

Compare Source

Features

• manager/gleam: extract locked versions (#​31000) (f619736)
• manager/pip_setup: set currentVersion field for exact dependency versions (#​31021) (6c7316c)

Bug Fixes

• deps: update ghcr.io/containerbase/sidecar docker tag to v11.11.8 (#​31023) (8cc0575)

Documentation

• golang: Minor grammar error in readme (#​30938) (decdac9)

Miscellaneo

---

Configuration

📅 Schedule: Branch creation - "* 18 1,11,21 * *" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.