chore(deps): bump the npm_and_yarn group across 2 directories with 31 updates

[dependabot]

Bumps the npm_and_yarn group with 2 updates in the /packages/docsify-server-renderer directory: docsify and node-fetch.
Bumps the npm_and_yarn group with 18 updates in the / directory:

Package	From	To
node-fetch	2.6.0	2.6.7
marked	0.7.0	4.0.10
prismjs	1.19.0	1.30.0
rollup	1.23.1	2.79.2
ansi-regex	3.0.0	3.0.1
ansi-regex	4.1.0	4.1.1
@hapi/hoek	8.5.0	8.5.1
dot-prop	4.2.0	4.2.1
ajv	6.10.2	6.12.6
async	2.6.1	removed
tmp	0.0.33	0.2.5
decode-uri-component	0.2.0	0.2.2
form-data	2.3.3	4.0.4
fsevents	1.2.9	1.2.13
on-headers	1.0.2	1.1.0
pathval	1.1.0	1.1.1
plist	3.0.1	3.1.0
shell-quote	1.7.2	1.8.3
y18n	4.0.0	4.0.3

Updates docsify from 4.11.2 to 4.12.2

Release notes

Sourced from docsify's releases.

v4.12.2

Bug Fixes

• Fix microsoft/playwright-github-action error (#1534)
• Fix Cannot read property 'classList' of null (#1527)
• Fix search for missing pathNamespaces (#1547)
• Fix buble theme missing generic fallback font (#1568)
• Fix allow " inside of an embed(#1598 )
• Fix Can not read property 'tagName' of null(#1655 )
• Fix sidebar height style in Mobile Chrome(#1683)

Chore

• Update PULL_REQUEST_TEMPLATE.md
• Upgrade docsify from 4.12.0 to 4.12.1 (#1544)
• Convert Docsify and mixins to ES classes(#1685 )
• Build test locally in Docker(#1688)

Docs

• Update deploy, change Zeit to Vercel (#1540)
• Link with plugin Pagination (#1554)
• Add dynamic code block highlighting documentation (#1626)
• Update formatUpdated (#1645)
• Add nameLink for change logo redirect. (#1651)

v4.12.1

Bug Fixes

• Replace ES6 usage for IE11 compatibility (#1500)
• Fix theme switcher in IE11 (#1502)
• Fix isExternal check with malformed URL + tests (#1510)

Features

• Support search when there is no title (#1519)

Chore

• Fix missing carbon (#1501)
• Change Gitter to Discord throughout project (#1507)
• Upgrade docsify from 4.11.6 to 4.12.0 (#1518)
• Add test cases on isExternal. (#1515)

Docs

• Updated alias (#1511)
• Update Vercel logo link (#1520)

... (truncated)

Changelog

Sourced from docsify's changelog.

4.12.2 (2022-01-06)

Bug Fixes

• Add escapeHtml for search (#1551) (c24f7f6)
• allow also " inside of an embed (ec16e4a)
• buble theme missing generic fallback font (#1568) (37d9f0e)
• Cannot read property 'classList' of null (#1527) (d6df2b8)
• Cannot read property 'tagName' of null (#1655) (c3cdadc)
• upgrade debug from 4.3.2 to 4.3.3 (#1692) (40e7749)
• Upgrade docsify from 4.12.0 to 4.12.1 (#1544) (d607f6d)
• upgrade dompurify from 2.2.6 to 2.2.7 (#1552) (407e4d4)
• Upgrade dompurify from 2.2.6 to 2.2.7 (#1553) (93c48f3)
• upgrade dompurify from 2.2.7 to 2.2.8 (#1577) (0dd44cc)
• upgrade dompurify from 2.2.7 to 2.3.0 (#1619) (66303fe)
• upgrade dompurify from 2.2.8 to 2.2.9 (#1600) (baf5a8a)
• upgrade dompurify from 2.2.9 to 2.3.0 (#1616) (b07fa3c)
• upgrade dompurify from 2.3.0 to 2.3.1 (#1635) (5ac8237)
• upgrade dompurify from 2.3.1 to 2.3.2 (#1647) (ff6acfa)
• upgrade node-fetch from 2.6.1 to 2.6.2 (#1641) (6ee1c14)
• upgrade node-fetch from 2.6.2 to 2.6.4 (#1649) (6f81034)
• upgrade node-fetch from 2.6.4 to 2.6.5 (#1654) (d16e657)
• upgrade node-fetch from 2.6.5 to 2.6.6 (#1668) (cefe3f8)

4.12.1 (2021-03-07)

Bug Fixes

• isExternal check with malformed URL + tests (#1510) (ff2a66f), closes #1477 #1126 #1489
• Replace ES6 usage for IE11 compatibility (#1500) (a0f61b2)
• theme switcher in IE11 (#1502) (8cda078)
• Upgrade docsify from 4.11.6 to 4.12.0 (#1518) (47cd86c)

Features

• Support search when there is no title (#1519) (bc37268)

Chore

• Fix missing carbon (#1501)
• Change Gitter to Discord throughout project (#1507)
• Add test cases on isExternal (#1515)

... (truncated)

Commits

• e80238d chore: add changelog 4.12.2
• e405120 [build] 4.12.2
• c90c6a4 style: allow devs to test both build and tests at the same time (#1707)
• 5cac06d Merge pull request #1688 from docsifyjs/docker-local
• aa91d9e Merge branch 'develop' into docker-local
• 40e7749 fix: upgrade debug from 4.3.2 to 4.3.3 (#1692)
• 6fbff47 Merge branch 'develop' into docker-local
• c454335 update: commands.
• 47cd3b6 Merge pull request #1683 from iNuanfeng/develop
• 3399977 Merge branch 'develop' into develop
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by koooooo-7, a new releaser for docsify since your current version.

Updates node-fetch from 2.6.0 to 2.6.7

Release notes

Sourced from node-fetch's releases.

v2.6.7

Security patch release

Recommended to upgrade, to not leak sensitive cookie and authentication header information to 3th party host while a redirect occurred

What's Changed

• fix: don't forward secure headers to 3th party by @​jimmywarting in node-fetch/node-fetch#1453

Full Changelog: node-fetch/node-fetch@v2.6.6...v2.6.7

v2.6.6

What's Changed

• fix(URL): prefer built in URL version when available and fallback to whatwg by @​jimmywarting in node-fetch/node-fetch#1352

Full Changelog: node-fetch/node-fetch@v2.6.5...v2.6.6

v2.6.2

fixed main path in package.json

v2.6.1

This is an important security release. It is strongly recommended to update as soon as possible.

See CHANGELOG for details.

Commits

• 1ef4b56 backport of #1449 (#1453)
• 8fe5c4e 2.x: Specify encoding as an optional peer dependency in package.json (#1310)
• f56b0c6 fix(URL): prefer built in URL version when available and fallback to whatwg (...
• b5417ae fix: import whatwg-url in a way compatible with ESM Node (#1303)
• 18193c5 fix v2.6.3 that did not sending query params (#1301)
• ace7536 fix: properly encode url with unicode characters (#1291)
• 152214c Fix(package.json): Corrected main file path in package.json (#1274)
• b5e2e41 update version number
• 2358a6c Honor the size option after following a redirect and revert data uri support
• 8c197f8 docs: Fix typos and grammatical errors in README.md (#686)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by endless, a new releaser for node-fetch since your current version.

Updates marked from 0.7.0 to 1.2.9

Release notes

Sourced from marked's releases.

v4.0.10

4.0.10 (2022-01-13)

Bug Fixes

• security: fix redos vulnerabilities (8f80657)

v4.0.9

4.0.9 (2022-01-06)

Bug Fixes

• retain line breaks in tokens properly (#2341) (a9696e2)

v4.0.8

4.0.8 (2021-12-19)

Bug Fixes

• spaces on a newline after a table (#2319) (f82ea2c)

v4.0.7

4.0.7 (2021-12-09)

Bug Fixes

• Fix every third list item broken (#2318) (346b162), closes #2314

Commits

• ae01170 chore(release): 4.0.10 [skip ci]
• fceda57 🗜️ build [skip ci]
• 8f80657 fix(security): fix redos vulnerabilities
• c4a3ccd Merge pull request from GHSA-rrrm-qjm4-v8hf
• d7212a6 chore(deps-dev): Bump jasmine from 4.0.0 to 4.0.1 (#2352)
• 5a84db5 chore(deps-dev): Bump rollup from 2.62.0 to 2.63.0 (#2350)
• 2bc67a5 chore(deps-dev): Bump markdown-it from 12.3.0 to 12.3.2 (#2351)
• 98996b8 chore(deps-dev): Bump @​babel/preset-env from 7.16.5 to 7.16.7 (#2353)
• ebc2c95 chore(deps-dev): Bump highlight.js from 11.3.1 to 11.4.0 (#2354)
• e5171a9 chore(release): 4.0.9 [skip ci]
• Additional commits viewable in compare view

Updates prismjs from 1.19.0 to 1.30.0

Release notes

Sourced from prismjs's releases.

v1.30.0

What's Changed

• check that currentScript is set by a script tag by @​lkuechler in PrismJS/prism#3863

New Contributors

• @​lkuechler made their first contribution in PrismJS/prism#3863

Full Changelog: PrismJS/prism@v1.29.0...v1.30.0

v1.29.0

Release 1.29.0

v1.28.0

Release 1.28.0

v1.27.0

Release 1.27.0

v1.26.0

Release 1.26.0

v1.25.0

Release 1.25.0

v1.24.1

Release 1.24.1

v1.24.0

Release 1.24.0

v1.23.0

Release 1.23.0

v1.22.0

Release 1.22.0

v1.21.0

Release 1.21.0

v1.20.0

Release 1.20.0

Changelog

Sourced from prismjs's changelog.

Prism Changelog

1.29.0 (2022-08-23)

New components

• BBj (#3511) 1134bdfc
• BQN (#3515) 859f99a0
• Cilk/C & Cilk/C++ (#3522) c8462a29
• Gradle (#3443) 32119823
• METAFONT (#3465) 2815f699
• WGSL (#3455) 4c87d418

Updated components

• AsciiDoc
  • Some regexes are too greedy (#3481) c4cbeeaa
• Bash
  • Added "sh" alias (#3509) 6b824d47
  • Added support for parameters and the java and sysctl commands. (#3505) b9512b22
  • Added cargo command (#3488) 3e937137
• BBj
  • Improve regexes (#3512) 0cad9ae5
• CSS
  • Fixed @-rules not accounting for strings (#3438) 0d4b6cb6
• CSS Extras
  • Added support for RebeccaPurple color (#3448) 646b2e0a
• Hoon
  • Fixed escaped strings (#3473) 64642716
• Java
  • Added support for constants (#3507) 342a0039
• Markup
  • Fixed quotes in HTML attribute values (#3442) ca8eaeee
• NSIS
  • Added missing commands (#3504) b0c2a9b4
• Scala
  • Updated keywords to support Scala 3 (#3506) a090d063
• SCSS
  • Fix casing in title of the scss lang (#3501) 2aed9ce7

Updated plugins

• Line Highlight
  • Account for offset when clamping ranges (#3518) 098e3000
  • Ignore ranges outside of actual lines (#3475) 9a4e725b
• Normalize Whitespace
  • Add configuration via attributes (#3467) 91dea0c8

Other

... (truncated)

Commits

• 76dde18 Release 1.30.0
• 93cca40 npm pkg fix
• 99c5ca9 Add release script
• 8e8b935 check that currentScript is set by a script tag (#3863)
• f894dc2 Fix logo in the footer
• ac38dce Delete CNAME
• 9b5b09a Enable CORS
• 59e5a34 1.29.0
• cd080f2 Updated npmignore to include new MD files (#3534)
• 751664b Added PR stop notice (#3532)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by dmitrysharabin, a new releaser for prismjs since your current version.

Updates node-fetch from 2.6.0 to 2.6.7

Release notes

Sourced from node-fetch's releases.

v2.6.7

Security patch release

Recommended to upgrade, to not leak sensitive cookie and authentication header information to 3th party host while a redirect occurred

What's Changed

• fix: don't forward secure headers to 3th party by @​jimmywarting in node-fetch/node-fetch#1453

Full Changelog: node-fetch/node-fetch@v2.6.6...v2.6.7

v2.6.6

What's Changed

• fix(URL): prefer built in URL version when available and fallback to whatwg by @​jimmywarting in node-fetch/node-fetch#1352

Full Changelog: node-fetch/node-fetch@v2.6.5...v2.6.6

v2.6.2

fixed main path in package.json

v2.6.1

This is an important security release. It is strongly recommended to update as soon as possible.

See CHANGELOG for details.

Commits

• 1ef4b56 backport of #1449 (#1453)
• 8fe5c4e 2.x: Specify encoding as an optional peer dependency in package.json (#1310)
• f56b0c6 fix(URL): prefer built in URL version when available and fallback to whatwg (...
• b5417ae fix: import whatwg-url in a way compatible with ESM Node (#1303)
• 18193c5 fix v2.6.3 that did not sending query params (#1301)
• ace7536 fix: properly encode url with unicode characters (#1291)
• 152214c Fix(package.json): Corrected main file path in package.json (#1274)
• b5e2e41 update version number
• 2358a6c Honor the size option after following a redirect and revert data uri support
• 8c197f8 docs: Fix typos and grammatical errors in README.md (#686)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by endless, a new releaser for node-fetch since your current version.

Updates marked from 0.7.0 to 4.0.10

Release notes

Sourced from marked's releases.

v4.0.10

4.0.10 (2022-01-13)

Bug Fixes

• security: fix redos vulnerabilities (8f80657)

v4.0.9

4.0.9 (2022-01-06)

Bug Fixes

• retain line breaks in tokens properly (#2341) (a9696e2)

v4.0.8

4.0.8 (2021-12-19)

Bug Fixes

• spaces on a newline after a table (#2319) (f82ea2c)

v4.0.7

4.0.7 (2021-12-09)

Bug Fixes

• Fix every third list item broken (#2318) (346b162), closes #2314

Commits

• ae01170 chore(release): 4.0.10 [skip ci]
• fceda57 🗜️ build [skip ci]
• 8f80657 fix(security): fix redos vulnerabilities
• c4a3ccd Merge pull request from GHSA-rrrm-qjm4-v8hf
• d7212a6 chore(deps-dev): Bump jasmine from 4.0.0 to 4.0.1 (#2352)
• 5a84db5 chore(deps-dev): Bump rollup from 2.62.0 to 2.63.0 (#2350)
• 2bc67a5 chore(deps-dev): Bump markdown-it from 12.3.0 to 12.3.2 (#2351)
• 98996b8 chore(deps-dev): Bump @​babel/preset-env from 7.16.5 to 7.16.7 (#2353)
• ebc2c95 chore(deps-dev): Bump highlight.js from 11.3.1 to 11.4.0 (#2354)
• e5171a9 chore(release): 4.0.9 [skip ci]
• Additional commits viewable in compare view

Updates prismjs from 1.19.0 to 1.30.0

Release notes

Sourced from prismjs's releases.

v1.30.0

What's Changed

• check that currentScript is set by a script tag by @​lkuechler in PrismJS/prism#3863

New Contributors

• @​lkuechler made their first contribution in PrismJS/prism#3863

Full Changelog: PrismJS/prism@v1.29.0...v1.30.0

v1.29.0

Release 1.29.0

v1.28.0

Release 1.28.0

v1.27.0

Release 1.27.0

v1.26.0

Release 1.26.0

v1.25.0

Release 1.25.0

v1.24.1

Release 1.24.1

v1.24.0

Release 1.24.0

v1.23.0

Release 1.23.0

v1.22.0

Release 1.22.0

v1.21.0

Release 1.21.0

v1.20.0

Release 1.20.0

Changelog

Sourced from prismjs's changelog.

Prism Changelog

1.29.0 (2022-08-23)

New components

• BBj (#3511) 1134bdfc
• BQN (#3515) 859f99a0
• Cilk/C & Cilk/C++ (#3522) c8462a29
• Gradle (#3443) 32119823
• METAFONT (#3465) 2815f699
• WGSL (#3455) 4c87d418

Updated components

• AsciiDoc
  • Some regexes are too greedy (#3481) c4cbeeaa
• Bash
  • Added "sh" alias (#3509) 6b824d47
  • Added support for parameters and the java and sysctl commands. (#3505) b9512b22
  • Added cargo command (#3488) 3e937137
• BBj
  • Improve regexes (#3512) 0cad9ae5
• CSS
  • Fixed @-rules not accounting for strings (#3438) 0d4b6cb6
• CSS Extras
  • Added support for RebeccaPurple color (#3448) 646b2e0a
• Hoon
  • Fixed escaped strings (#3473) 64642716
• Java
  • Added support for constants (#3507) 342a0039
• Markup
  • Fixed quotes in HTML attribute values (#3442) ca8eaeee
• NSIS
  • Added missing commands (#3504) b0c2a9b4
• Scala
  • Updated keywords to support Scala 3 (#3506) a090d063
• SCSS
  • Fix casing in title of the scss lang (#3501) 2aed9ce7

Updated plugins

• Line Highlight
  • Account for offset when clamping ranges (#3518) 098e3000
  • Ignore ranges outside of actual lines (#3475) 9a4e725b
• Normalize Whitespace
  • Add configuration via attributes (#3467) 91dea0c8

Other

... (truncated)

Commits

• 76dde18 Release 1.30.0
• 93cca40 npm pkg fix
• 99c5ca9 Add release script
• 8e8b935 check that currentScript is set by a script tag (#3863)
• f894dc2 Fix logo in the footer
• ac38dce Delete CNAME
• 9b5b09a Enable CORS
• 59e5a34 1.29.0
• cd080f2 Updated npmignore to include new MD files (#3534)
• 751664b Added PR stop notice (#3532)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by dmitrysharabin, a new releaser for prismjs since your current version.

Updates rollup from 1.23.1 to 2.79.2

Release notes

Sourced from rollup's releases.

v.2.79.2

2.79.2

2024-09-26

Bug Fixes

• Fix a vulnerability in generated code that affects IIFE, UMD and CJS bundles when run in a browser context (#5671)

Pull Requests

• #5671: Fix DOM Clobbering CVE (@​lukastaegert)

Changelog

Sourced from rollup's changelog.

rollup changelog

1.32.1

2020-03-06

Bug Fixes

• Handle default export detection for AMD and IIFE externals that do not have a prototype (#3420)
• Handle missing whitespace when the else branch of an if-statement is simplified (#3421)
• Mention the importing module when reporting errors for missing named exports (#3401)
• Add code to warning for missing output.name of IIFE bundles (#3372)

Pull Requests

• #3372: Add warning code for missing output.name of IIFE bundle that has export (@​rail44)
• #3401: Missing exports errors now print the importing module (@​timiyay)
• #3418: Structure lifecycle hooks, add links to build time hooks ( @​lukastaegert)
• #3420: Update generated code of getInteropBlock() to work with null prototype objects (@​jdalton)
• #3421: Avoid invalid code when "else" branch is simplified ( @​lukastaegert)

1.32.0

2020-02-28

Features

• Allow adding plugins on the command line via --plugin <plugin> (#3379)

Pull Requests

• #3379: introduce CLI --plugin support (@​kzc)
• #3390: fix typo: this.addWatchfile (@​mistlog)
• #3392: Bump codecov from 3.6.1 to 3.6.5
• #3404: Update resolveFileUrl docs (@​jakearchibald)

1.31.1

2020-02-14

Bug Fixes

• Make sure errored files are always re-evaluated in watch mode to avoid an issue in the typescript plugin (#3388)

Pull Requests

• #3366: Correct spelling minifaction to minification (@​VictorHom)
• #3371: Adjust bug template to mention REPL.it (@​lukastaegert)
• #3388: Run transform hooks again in watch mode on files that errored ( @​lukastaegert)

... (truncated)

Commits

• c9bd03d 2.79.2
• 48aef33 fix: resolve DOM Clobbering CVE-2024-43788 (backport to v2) (#5677)
• 69ff418 2.79.1
• 04dce1b Update changelog
• 159137e fix: typo docs and contributors link in CONTRIBUTING.md (#4639)
• e1392b3 Update type definition of resolveId (#4641)
• 7836357 Improve performance of chunk naming collision check (#4643)
• 71d20c9 Reduce permissions for repl-artefacts.yml workflow (#4630)
• 8193ea5 Adapt workflow to use Node 14 sub-version to work with branch protection
• 8477f8f 2.79.0
• Additional commits viewable in compare view

Updates @babel/traverse from 7.8.4 to 7.28.5

Release notes

Sourced from @​babel/traverse's releases.

v7.28.5 (2025-10-23)

Thank you @​CO0Ki3, @​Olexandr88, and @​youthfulhps for your first PRs!

👓 Spec Compliance

• babel-parser
  • #17446 Allow Runtime Errors for Function Call Assignment Targets (@​liuxingbaoyu)
• babel-helper-validator-identifier
  • #17501 fix: update identifier to unicode 17 (@​fisker)

🐛 Bug Fix

• babel-plugin-proposal-destructuring-private
  • #17534 Allow mixing private destructuring and rest (@​CO0Ki3)
• babel-parser
  • #17521 Improve @babel/parser error typing (@​JLHwung)
  • #17491 fix: improve ts-only declaration parsing (@​JLHwung)
• babel-plugin-proposal-discard-binding, babel-plugin-transform-destructuring
  • #17519 fix: rest correctly returns plain array (@​liuxingbaoyu)
• babel-helper-create-class-features-plugin, babel-helper-member-expression-to-functions, babel-plugin-transform-block-scoping, babel-plugin-transform-optional-chaining, babel-traverse, babel-types
  • #17503 Fix JSXIdentifier handling in isReferencedIdentifier (@​JLHwung)
• babel-traverse
  • #17504 fix: ensure scope.push register in anonymous fn (@​JLHwung)

🏠 Internal

• babel-types
  • #17494 Type checking babel-types scripts (@​JLHwung)

🏃‍♀️ Performance

• babel-core
  • #17490 Faster finding of locations in buildCodeFrameError (@​liuxingbaoyu)

Committers: 8

• Babel Bot (@​babel-bot)
• Byeongho Yoo (@​youthfulhps)
• Huáng Jùnliàng (@​JLHwung)
• Hyeon Dokko (@​CO0Ki3)
• Nicolò Ribaudo (@​nicolo-ribaudo)
• @​Olexandr88
• @​liuxingbaoyu
• fisker Cheung (@​fisker)

v7.28.4 (2025-09-05)

Thanks @​gwillen and @​mrginglymus for your first PRs!

🏠 Internal

• babel-core, babel-helper-check-duplicate-nodes, babel-traverse, babel-types
  • #17493 Update Jest to v30.1.1 (@​JLHwung)
• babel-plugin-transform-regenerator
  • #17455 chore: Clean up transform-regenerator (@​liuxingbaoyu)

... (truncated)

Changelog

Sourced from @​babel/traverse's changelog.

v7.28.5 (2025-10-23)

👓 Spec Compliance

• babel-parser
  • #17446 Allow Runtime Errors for Function Call Assignment Targets (@​liuxingbaoyu)
• babel-helper-validator-identifier
  • #17501 fix: update identifier to unicode 17 (@​fisker)

🐛 Bug Fix

• babel-plugin-proposal-destructuring-private
  • #17534 Allow mixing private destructuring and rest (@​CO0Ki3)
• babel-parser
  • #17521 Improve @babel/parser error typing (@​JLHwung)
  • #17491 fix: improve ts-only declaration parsing (@​JLHwung)
• babel-plugin-proposal-discard-binding, babel-plugin-transform-destructuring
  • #17519 fix: rest correctly returns plain array (@​liuxingbaoyu)
• babel-helper-create-class-features-plugin, babel-helper-member-expression-to-functions, babel-plugin-transform-block-scoping, babel-plugin-transform-optional-chaining, babel-traverse, babel-types
  • #17503 Fix JSXIdentifier handling in isReferencedIdentifier (@​JLHwung)
• babel-traverse
  • #17504 fix: ensure scope.push register in anonymous fn (@​JLHwung)

🏠 Internal

• babel-types
  • #17494 Type checking babel-types scripts (@​JLHwung)

🏃‍♀️ Performance

• babel-core
  • #17490 Faster finding of locations in buildCodeFrameError (@​liuxingbaoyu)

v7.28.4 (2025-09-05)

🏠 Internal

• babel-core, babel-helper-check-duplicate-nodes, babel-traverse, babel-types
  • #17493 Update Jest to v30.1.1 (@​JLHwung)
• babel-plugin-tr...

  Description has been truncated