Bump the npm_and_yarn group across 3 directories with 17 updates

[dependabot]

Bumps the npm_and_yarn group with 15 updates in the /client directory:

Package	From	To
axios	0.21.4	0.28.0
nunjucks	3.2.1	3.2.4
postcss	8.3.5	8.4.31
lodash-es	4.17.15	4.17.21
@babel/traverse	7.12.13	7.24.0
@graphql-codegen/cli	1.21.8	5.0.2
tough-cookie	4.0.0	4.1.3
tough-cookie	4.1.2	4.1.3
juice	6.0.0	10.0.0
apollo-server-core	2.18.1	2.26.2
browserify-sign	4.2.0	4.2.3
fsevents	1.2.9	1.2.13
follow-redirects	1.15.2	1.15.6
ip	1.1.5	1.1.9
msgpackr	1.7.2	1.10.1
protobufjs	6.11.3	6.11.4
Bumps the npm_and_yarn group with 5 updates in the /docs directory:

Package	From	To
postcss	8.3.5	8.4.35
@babel/traverse	7.14.5	7.24.0
semver	5.7.1	5.7.2
follow-redirects	1.14.1	1.15.6
ip	1.1.5	1.1.9
Bumps the npm_and_yarn group with 15 updates in the /server directory:

Package	From	To
axios	0.21.4	0.28.0
nunjucks	3.2.1	3.2.4
postcss	8.3.5	8.4.31
lodash-es	4.17.15	4.17.21
@babel/traverse	7.12.13	7.24.0
@graphql-codegen/cli	1.21.8	5.0.2
tough-cookie	4.0.0	4.1.3
tough-cookie	4.1.2	4.1.3
juice	6.0.0	10.0.0
apollo-server-core	2.18.1	2.26.2
browserify-sign	4.2.0	4.2.3
fsevents	1.2.9	1.2.13
follow-redirects	1.15.2	1.15.6
ip	1.1.5	1.1.9
msgpackr	1.7.2	1.10.1
protobufjs	6.11.3	6.11.4

Updates axios from 0.21.4 to 0.28.0

Release notes

Sourced from axios's releases.

Release v0.28.0

Release notes:

Bug Fixes

• fix(security): fixed CVE-2023-45857 by backporting withXSRFToken option to v0.x (#6091)

Backports from v1.x:

• Allow null indexes on formSerializer and paramsSerializer v0.x (#4961)
• Fixing content-type header repeated #4745
• Fixed timeout error message for HTTP 4738
• Added axios.formToJSON method (#4735)
• URL params serializer (#4734)
• Fixed toFormData Blob issue on node>v17 #4728
• Adding types for progress event callbacks #4675
• Fixed max body length defaults #4731
• Added data URL support for node.js (#4725)
• Added isCancel type assert (#4293)
• Added the ability for the url-encoded-form serializer to respect the formSerializer config (#4721)
• Add string[] to AxiosRequestHeaders type (#4322)
• Allow type definition for axios instance methods (#4224)
• Fixed AxiosError stack capturing; (#4718)
• Fixed AxiosError status code type; (#4717)
• Adding Canceler parameters config and request (#4711)
• fix(types): allow to specify partial default headers for instance creation (#4185)
• Added blob to the list of protocols supported by the browser (#4678)
• Fixing Z_BUF_ERROR when no content (#4701)
• Fixed race condition on immediate requests cancellation (#4261)
• Added a clear() function to the request and response interceptors object so a user can ensure that all interceptors have been removed from an Axios instance axios/axios#4248
• Added generic AxiosAbortSignal TS interface to avoid importing AbortController polyfill (#4229)
• Fix TS definition for AxiosRequestTransformer (#4201)
• Use type alias instead of interface for AxiosPromise (#4505)
• Include request and config when creating a CanceledError instance (#4659)
• Added generic TS types for the exposed toFormData helper (#4668)
• Optimized the code that checks cancellation (#4587)
• Replaced webpack with rollup (#4596)
• Added stack trace to AxiosError (#4624)
• Updated AxiosError.config to be optional in the type definition (#4665)
• Removed incorrect argument for NetworkError constructor (#4656)

v0.27.2

Fixes and Functionality:

• Fixed FormData posting in browser environment by reverting #3785 (#4640)
• Enhanced protocol parsing implementation (#4639)
• Fixed bundle size

v0.27.1

Fixes and Functionality:

• Removed import of url module in browser build due to huge size overhead and builds being broken (#4594)
• Bumped follow-redirects to ^1.14.9 (#4615)

... (truncated)

Changelog

Sourced from axios's changelog.

0.28.0 (2024-02-12)

Release notes:

Bug Fixes

• fix(security): fixed CVE-2023-45857 by backporting withXSRFToken option to v0.x (#6091)

Backports from v1.x:

• Allow null indexes on formSerializer and paramsSerializer v0.x (#4961)
• Fixing content-type header repeated #4745
• Fixed timeout error message for HTTP 4738
• Added axios.formToJSON method (#4735)
• URL params serializer (#4734)
• Fixed toFormData Blob issue on node>v17 #4728
• Adding types for progress event callbacks #4675
• Fixed max body length defaults #4731
• Added data URL support for node.js (#4725)
• Added isCancel type assert (#4293)
• Added the ability for the url-encoded-form serializer to respect the formSerializer config (#4721)
• Add string[] to AxiosRequestHeaders type (#4322)
• Allow type definition for axios instance methods (#4224)
• Fixed AxiosError stack capturing; (#4718)
• Fixed AxiosError status code type; (#4717)
• Adding Canceler parameters config and request (#4711)
• fix(types): allow to specify partial default headers for instance creation (#4185)
• Added blob to the list of protocols supported by the browser (#4678)
• Fixing Z_BUF_ERROR when no content (#4701)
• Fixed race condition on immediate requests cancellation (#4261)
• Added a clear() function to the request and response interceptors object so a user can ensure that all interceptors have been removed from an Axios instance axios/axios#4248
• Added generic AxiosAbortSignal TS interface to avoid importing AbortController polyfill (#4229)
• Fix TS definition for AxiosRequestTransformer (#4201)
• Use type alias instead of interface for AxiosPromise (#4505)
• Include request and config when creating a CanceledError instance (#4659)
• Added generic TS types for the exposed toFormData helper (#4668)
• Optimized the code that checks cancellation (#4587)
• Replaced webpack with rollup (#4596)
• Added stack trace to AxiosError (#4624)
• Updated AxiosError.config to be optional in the type definition (#4665)
• Removed incorrect argument for NetworkError constructor (#4656)

0.27.2 (April 27, 2022)

Fixes and Functionality:

• Fixed FormData posting in browser environment by reverting #3785 (#4640)
• Enhanced protocol parsing implementation (#4639)
• Fixed bundle size

0.27.1 (April 26, 2022)

... (truncated)

Commits

• 3b7635a [Release] v0.28.0 (#6211)
• 27c0076 feat(backport): added ability for paramsSerializer to handle function; (#6227)
• 80c3d74 chore(ci): backported publish action; (#6224)
• 2755df5 fix(security): fixed CVE-2023-45857 by backporting withXSRFToken option to ...
• 880b42e docs: Fix a typo in README
• c4bf0a4 Allow null indexes on formSerializer and paramsSerializer v0.x (#4961)
• 1e2679f fix: [Types] Type of header in AxiosRequestConfig / for Axios.create is incor...
• 80b546c fix: loosing request header (#4858) (#4871)
• 6acb5ef feat: brower platform add data protocol. (#4814)
• bbb2264 fix(typing): axios response headers can be undefined (#4813)
• Additional commits viewable in compare view

Updates nunjucks from 3.2.1 to 3.2.4

Release notes

Sourced from nunjucks's releases.

v3.2.4

What's Changed

• fix: html encode backslashes if used with escape filter or autoescape by @​fdintino in mozilla/nunjucks#1437. Fixes CVE-2023-2142 ([bugzilla #1825980](https://bugzilla.mozilla.org/show_bug.cgi?id=1825980))

Full Changelog: mozilla/nunjucks@v3.2.3...v3.2.4

v3.2.3

• Add support for nested attributes on sort filter; respect throwOnUndefined if sort attribute is undefined.
• Add base arg to int filter.
• Move chokidar to peerDependencies and mark it optional in peerDependenciesMeta.
• Fix prototype pollution issue for template variables. Merge of #1330; fixes #1331. Thanks ChenKS12138!

v3.2.2

• Add select and reject filters. Merge of #1278 and #1279; fixes #282. Thanks ogonkov!
• Fix precompile binary script TypeError: name.replace is not a function. Fixes #1295.
• Add support for nested attributes on groupby filter; respect throwOnUndefined option, if the groupby attribute is undefined. Merge of #1276; fixes #1198. Thanks ogonkov!
• Fix bug that prevented errors in included templates from being raised when rendering templates synchronously. Fixes #1272.
• The indent filter no longer appends an additional newline. Fixes #1231.

Changelog

Sourced from nunjucks's changelog.

3.2.4 (Apr 13 2023)

• HTML encode backslashes when expressions are passed through the escape filter (including when this is done automatically with autoescape). Merge of #1437.

3.2.3 (Feb 15 2021)

• Add support for nested attributes on sort filter; respect throwOnUndefined if sort attribute is undefined.
• Add base arg to int filter.
• Move chokidar to peerDependencies and mark it optional in peerDependenciesMeta.
• Fix prototype pollution issue for template variables. Merge of #1330; fixes #1331. Thanks ChenKS12138!

3.2.2 (Jul 20 2020)

• Add select and reject filters. Merge of #1278 and #1279; fixes #282. Thanks ogonkov!
• Fix precompile binary script TypeError: name.replace is not a function. Fixes #1295.
• Add support for nested attributes on groupby filter; respect throwOnUndefined option, if the groupby attribute is undefined. Merge of #1276; fixes #1198. Thanks ogonkov!
• Fix bug that prevented errors in included templates from being raised when rendering templates synchronously. Fixes #1272.
• The indent filter no longer appends an additional newline. Fixes #1231.

Commits

• 86a77f4 Release v3.2.4
• ec16d21 fix: html encode backslashes if used with escape filter or autoescape (#1437)
• fd50090 Release v3.2.3
• d34fdbf Temporarily comment out codecov action
• cefad41 Replace README.md travis badge with github actions
• 7601ff4 Fixup github actions workflow file
• de9dc67 Add GitHub Workflow for tests. fixes #1333
• aa9e5b9 Fix prototype pollution security issue. fixes #1331
• f51afa3 Move chokidar to peerDependencies and make it optional via peerDependenciesMe...
• f91f1c3 Fix groupby example formatting
• Additional commits viewable in compare view

Updates postcss from 8.3.5 to 8.4.31

Release notes

Sourced from postcss's releases.

8.4.31

• Fixed \r parsing to fix CVE-2023-44270.

8.4.30

• Improved source map performance (by @​romainmenke).

8.4.29

• Fixed Node#source.offset (by @​idoros).
• Fixed docs (by @​coliff).

8.4.28

• Fixed Root.source.end for better source map (by @​romainmenke).
• Fixed Result.root types when process() has no parser.

8.4.27

• Fixed Container clone methods types.

8.4.26

• Fixed clone methods types.

8.4.25

• Improve stringify performance (by @​romainmenke).
• Fixed docs (by @​vikaskaliramna07).

8.4.24

• Fixed Plugin types.

8.4.23

• Fixed warnings in TypeDoc.

8.4.22

• Fixed TypeScript support with node16 (by @​remcohaszing).

8.4.21

• Fixed Input#error types (by @​hudochenkov).

8.4.20

• Fixed source map generation for childless at-rules like @layer.

8.4.19

• Fixed whitespace preserving after AST transformations (by @​romainmenke).

8.4.18

• Fixed an error on absolute: true with empty sourceContent (by @​KingSora).

8.4.17

• Fixed Node.before() unexpected behavior (by @​romainmenke).
• Added TOC to docs (by @​muddv).

8.4.16

... (truncated)

Changelog

Sourced from postcss's changelog.

8.4.31

• Fixed \r parsing to fix CVE-2023-44270.

8.4.30

• Improved source map performance (by Romain Menke).

8.4.29

• Fixed Node#source.offset (by Ido Rosenthal).
• Fixed docs (by Christian Oliff).

8.4.28

• Fixed Root.source.end for better source map (by Romain Menke).
• Fixed Result.root types when process() has no parser.

8.4.27

• Fixed Container clone methods types.

8.4.26

• Fixed clone methods types.

8.4.25

• Improve stringify performance (by Romain Menke).
• Fixed docs (by @​vikaskaliramna07).

8.4.24

• Fixed Plugin types.

8.4.23

• Fixed warnings in TypeDoc.

8.4.22

• Fixed TypeScript support with node16 (by Remco Haszing).

8.4.21

• Fixed Input#error types (by Aleks Hudochenkov).

8.4.20

• Fixed source map generation for childless at-rules like @layer.

8.4.19

• Fixed whitespace preserving after AST transformations (by Romain Menke).

8.4.18

• Fixed an error on absolute: true with empty sourceContent (by Rene Haas).

8.4.17

• Fixed Node.before() unexpected behavior (by Romain Menke).
• Added TOC to docs (by Mikhail Dedov).

8.4.16

... (truncated)

Commits

• 90208de Release 8.4.31 version
• 58cc860 Fix carrier return parsing
• 4fff8e4 Improve pnpm test output
• cd43ed1 Update dependencies
• caa916b Update dependencies
• 8972f76 Typo
• 11a5286 Typo
• 45c5501 Release 8.4.30 version
• bc3c341 Update linter
• b2be58a Merge pull request #1881 from romainmenke/improve-sourcemap-performance--phil...
• Additional commits viewable in compare view

Updates lodash-es from 4.17.15 to 4.17.21

Commits

• f299b52 Bump to v4.17.21
• c4847eb Improve performance of toNumber, trim and trimEnd on large input strings
• 3469357 Prevent command injection through _.template's variable option
• ded9bc6 Bump to v4.17.20.
• 63150ef Documentation fixes.
• 00f0f62 test.js: Remove trailing comma.
• 846e434 Temporarily use a custom fork of lodash-cli.
• 5d046f3 Re-enable Travis tests on 4.17 branch.
• aa816b3 Remove /npm-package.
• d7fbc52 Bump to v4.17.19
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by bnjmnt4n, a new releaser for lodash-es since your current version.

Updates @babel/traverse from 7.12.13 to 7.24.0

Release notes

Sourced from @​babel/traverse's releases.

v7.24.0 (2024-02-28)

Thanks @​ajihyf for your first PR!

Release post with summary and highlights: https://babeljs.io/7.24.0

🚀 New Feature

• babel-standalone
  • #11696 Export babel tooling packages in @babel/standalone (@​ajihyf)
• babel-core, babel-helper-create-class-features-plugin, babel-helpers, babel-plugin-transform-class-properties
  • #16267 Implement noUninitializedPrivateFieldAccess assumption (@​nicolo-ribaudo)
• babel-helper-create-class-features-plugin, babel-helpers, babel-plugin-proposal-decorators, babel-plugin-proposal-pipeline-operator, babel-plugin-syntax-decorators, babel-plugin-transform-class-properties, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime
  • #16242 Support decorator 2023-11 normative updates (@​JLHwung)
• babel-preset-flow
  • #16309 [babel 7] Allow setting ignoreExtensions in Flow preset (@​nicolo-ribaudo)
  • #16284 Add experimental_useHermesParser option in preset-flow (@​liuxingbaoyu)
• babel-helper-import-to-platform-api, babel-plugin-proposal-import-wasm-source, babel-plugin-proposal-json-modules, babel-standalone
  • #16172 Add transform support for JSON modules imports (@​nicolo-ribaudo)
• babel-plugin-transform-runtime
  • #16241 Add back moduleName option to @babel/plugin-transform-runtime (@​nicolo-ribaudo)
• babel-parser, babel-types
  • #16277 Allow import attributes for TSImportType (@​sosukesuzuki)

🐛 Bug Fix

• babel-plugin-proposal-do-expressions, babel-traverse
  • #16305 fix: avoid popContext on unvisited node paths (@​JLHwung)
• babel-helper-create-class-features-plugin, babel-plugin-transform-private-methods, babel-plugin-transform-private-property-in-object
  • #16312 Fix class private properties when privateFieldsAsSymbols (@​liuxingbaoyu)
• babel-helper-create-class-features-plugin, babel-plugin-transform-private-methods
  • #16307 Fix the support of arguments in private get/set method (@​liuxingbaoyu)
• babel-helper-create-class-features-plugin, babel-helpers, babel-plugin-proposal-decorators
  • #16287 Reduce decorator static property size (@​liuxingbaoyu)
• babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators
  • #16281 Fix evaluation order of decorators with cached receiver (@​nicolo-ribaudo)
  • #16279 Fix decorator this memoization (@​JLHwung)
  • #16266 Preserve static on decorated private accessor (@​nicolo-ribaudo)
  • #16258 fix: handle decorated async private method and generator (@​JLHwung)
• babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators, babel-plugin-transform-async-generator-functions, babel-plugin-transform-private-methods, babel-plugin-transform-private-property-in-object, babel-plugin-transform-typescript, babel-preset-env
  • #16275 Fix class private properties when privateFieldsAsProperties (@​liuxingbaoyu)
• babel-helpers
  • #16268 Do not consider arguments in a helper as a global reference (@​nicolo-ribaudo)
• babel-helpers, babel-plugin-proposal-decorators
  • #16270 Handle symbol key class elements decoration (@​JLHwung)
  • #16265 Do not define access.get for public setter decorators (@​nicolo-ribaudo)

💅 Polish

• babel-core, babel-helper-create-class-features-plugin, babel-preset-env
  • #12428 Suggest using BABEL_SHOW_CONFIG_FOR for config problems (@​nicolo-ribaudo)

🏠 Internal

... (truncated)

Changelog

Sourced from @​babel/traverse's changelog.

v7.24.0 (2024-02-28)

🚀 New Feature

• babel-standalone
  • #11696 Export babel tooling packages in @babel/standalone (@​ajihyf)
• babel-core, babel-helper-create-class-features-plugin, babel-helpers, babel-plugin-transform-class-properties
  • #16267 Implement noUninitializedPrivateFieldAccess assumption (@​nicolo-ribaudo)
• babel-helper-create-class-features-plugin, babel-helpers, babel-plugin-proposal-decorators, babel-plugin-proposal-pipeline-operator, babel-plugin-syntax-decorators, babel-plugin-transform-class-properties, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime
  • #16242 Support decorator 2023-11 normative updates (@​JLHwung)
• babel-preset-flow
  • #16309 [babel 7] Allow setting ignoreExtensions in Flow preset (@​nicolo-ribaudo)
  • #16284 Add experimental_useHermesParser option in preset-flow (@​liuxingbaoyu)
• babel-helper-import-to-platform-api, babel-plugin-proposal-import-wasm-source, babel-plugin-proposal-json-modules, babel-standalone
  • #16172 Add transform support for JSON modules imports (@​nicolo-ribaudo)
• babel-plugin-transform-runtime
  • #16241 Add back moduleName option to @babel/plugin-transform-runtime (@​nicolo-ribaudo)
• babel-parser, babel-types
  • #16277 Allow import attributes for TSImportType (@​sosukesuzuki)

🐛 Bug Fix

• babel-plugin-proposal-do-expressions, babel-traverse
  • #16305 fix: avoid popContext on unvisited node paths (@​JLHwung)
• babel-helper-create-class-features-plugin, babel-plugin-transform-private-methods, babel-plugin-transform-private-property-in-object
  • #16312 Fix class private properties when privateFieldsAsSymbols (@​liuxingbaoyu)
• babel-helper-create-class-features-plugin, babel-plugin-transform-private-methods
  • #16307 Fix the support of arguments in private get/set method (@​liuxingbaoyu)
• babel-helper-create-class-features-plugin, babel-helpers, babel-plugin-proposal-decorators
  • #16287 Reduce decorator static property size (@​liuxingbaoyu)
• babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators
  • #16281 Fix evaluation order of decorators with cached receiver (@​nicolo-ribaudo)
  • #16279 Fix decorator this memoization (@​JLHwung)
  • #16266 Preserve static on decorated private accessor (@​nicolo-ribaudo)
  • #16258 fix: handle decorated async private method and generator (@​JLHwung)
• babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators, babel-plugin-transform-async-generator-functions, babel-plugin-transform-private-methods, babel-plugin-transform-private-property-in-object, babel-plugin-transform-typescript, babel-preset-env
  • #16275 Fix class private properties when privateFieldsAsProperties (@​liuxingbaoyu)
• babel-helpers
  • #16268 Do not consider arguments in a helper as a global reference (@​nicolo-ribaudo)
• babel-helpers, babel-plugin-proposal-decorators
  • #16270 Handle symbol key class elements decoration (@​JLHwung)
  • #16265 Do not define access.get for public setter decorators (@​nicolo-ribaudo)

💅 Polish

• babel-core, babel-helper-create-class-features-plugin, babel-preset-env
  • #12428 Suggest using BABEL_SHOW_CONFIG_FOR for config problems (@​nicolo-ribaudo)

🏠 Internal

• babel-helper-transform-fixture-test-runner
  • #16278 Continue writing output.js when exec.js throws (@​liuxingbaoyu)

🔬 Output optimization

... (truncated)

Commits

• ce59160 v7.24.0
• bd5abd5 fix: avoid popContext on unvisited node paths (#16305)
• 08a057c Use Object.hasOwn when available (#16248)
• a0dd614 v7.23.9
• 1200542 fix: Don't throw in getTypeAnnotation when using TS+inference (#15383)
• e428a6d v7.23.7
• d292822 fix: Crash when removing without Program (#16191)
• d02c1f7 v7.23.6
• cce807f Bump debug to ^4.3.1 (#16164)
• 8479012 v7.23.5
• Additional commits viewable in compare view

Updates @graphql-codegen/cli from 1.21.8 to 5.0.2

Release notes

Sourced from @​graphql-codegen/cli's releases.

@​graphql-codegen/cli@​2.11.3

Patch Changes

• b75ca4b48: Prevent cli from early returning when run init command.

@​graphql-codegen/cli@​2.11.2

Patch Changes

• 8cd1526c4: chore(deps): update @whatwg-node/fetch to fix vulnerability

@​graphql-codegen/cli@​2.11.1

Patch Changes

• 20bf4b225: support for path containing "&" characters

@​graphql-codegen/cli@​2.11.0

Minor Changes

• fd6be805b: feat(cli): add a dry-run mode with --check cli flag

Patch Changes

• 6a2e328e6: feat(cli): --verbose and --debug flags
• Updated dependencies [6a2e328e6]
  • @​graphql-codegen/plugin-helpers@​2.6.1

@​graphql-codegen/cli@​2.10.0

Minor Changes

• 273ad602f: Replace cross-undici-fetch with @​whatwg-node/fetch to fix security vulnerability from undici

Patch Changes

• cc18923d3: feat(hooks): forward hooks logs to debug logs

@​graphql-codegen/cli@​2.9.1

Patch Changes

• e2cfc5c36: fix(cli): prevent duplicated error messages on fail (without watcher)

Changelog

Sourced from @​graphql-codegen/cli's changelog.

5.0.2

Patch Changes

• #9813 4e69568 Thanks @​saihaj! - bumping for a release

• Updated dependencies [4e69568]:

  • @​graphql-codegen/client-preset@​4.2.2
  • @​graphql-codegen/core@​4.0.2
  • @​graphql-codegen/plugin-helpers@​5.0.3

5.0.1

Patch Changes

• #9811 d8364e045 Thanks @​saihaj! - dependencies updates:

  • Added dependency @graphql-codegen/client-preset@^4.1.0 ↗︎ (to dependencies)

• #9811 d8364e045 Thanks @​saihaj! - ignore events in .git directory

• #9811 d8364e045 Thanks @​saihaj! - Surface error occurring during import of @​parcel/watcher

• #9811 d8364e045 Thanks @​saihaj! - Include @​graphql-codegen/client-preset in @​graphql-codegen/cli by default

• #9811 d8364e045 Thanks @​saihaj! - fix watcher unable to find highest common directory on Windows

• Updated dependencies [d8364e045, d8364e045, d8364e045, d8364e045]:

  • @​graphql-codegen/client-preset@​4.2.0
  • @​graphql-codegen/core@​4.0.1
  • @​graphql-codegen/plugin-helpers@​5.0.2

5.0.0

Major Changes

• #9506 dd9c7e148 Thanks @​valkum! - Make @​parcel/watcher optional

Patch Changes

• #9513 fdd19d24d Thanks @​cichelero! - Update yaml dependency to 2.3.1

• Updated dependencies [bb1e0e96e]:

  • @​graphql-codegen/plugin-helpers@​5.0.1

4.0.1

Patch Changes

• #9479 0aa444b5d Thanks @​gilgardosh! - dependencies updates:

... (truncated)

Commits

• 56882d2 chore(release): update monorepo packages versions (#9837)
• eaa3d60 chore(release): update monorepo packages versions (#9812)
• d8364e0 Revert "chore(release): update monorepo packages versions (#9810)" (#9811)
• 840c66d chore(release): update monorepo packages versions (#9810)
• 137ca2c Revert "chore(release): update monorepo packages versions (#9648)" (#9809)
• 671859c chore(release): update monorepo packages versions (#9648)
• 1bed87b fix: out-of-memory crash (#7720) and significantly improve performance + feat...
• 8a4743f chore(deps): update dependency @​types/shell-quote to v1.7.3 (#9732)
• 3883505 chore(deps): update dependency @​types/js-yaml to v4.0.8 (#9724)
• e176eab Include @​graphql-codegen/client-preset in @​graphql-codegen/cli by default (#9...
• Additional commits viewable in compare view

Updates tough-cookie from 4.0.0 to 4.1.3

Release notes

Sourced from tough-cookie's releases.

4.1.3

Security fix for Prototype Pollution discovery in #282. This is a minor release, although output from the inspect utility is affected by this change, we felt this change was important enough to be pushed into the next patch.

4.1.2 -- Patch and Bugfix Release

What's Changed

• fix: allow set cookies with localhost by @​colincasey in salesforce/tough-cookie#253

Full Changelog: salesforce/tough-cookie@v4.1.1...v4.1.2

4.1.1

Patch Release

What's Changed

• fix: allow special use domains by default by @​colincasey in salesforce/tough-cookie#249
• 4.1.1 Patch -- allow special use domains by default by @​awaterma in salesforce/tough-cookie#250

Full Changelog: salesforce/tough-cookie@v4.1.0...v4.1.1

4.1.0

v4.1.0

Minor release, focused mainly on resolving reported issues and some minor feature work.

What's Changed

• Create CHANGELOG.md by @​ShivanKaul in salesforce/tough-cookie#189
• Missing param validation issue145 by @​medelibero-sfdc in salesforce/tough-cookie#193
• Create SECURI...

  Description has been truncated

[dependabot]

Superseded by #4.