[Dependencies]: Bump the dependencies-dev group with 5 updates

[dependabot]

Bumps the dependencies-dev group with 5 updates:

Package	From	To
@types/node	22.13.11	22.13.14
rollup	4.36.0	4.38.0
ts-jest	29.2.6	29.3.0
typescript-eslint	8.27.0	8.28.0
webpack-dev-server	5.2.0	5.2.1

Updates @types/node from 22.13.11 to 22.13.14

Commits

• See full diff in compare view

Updates rollup from 4.36.0 to 4.38.0

Release notes

Sourced from rollup's releases.

v4.38.0

4.38.0

2025-03-29

Features

• Support .filter option in resolveId, load and transform hooks (#5882)

Pull Requests

• #5882: Add support for hook filters (@​sapphi-red)
• #5894: fix(deps): lock file maintenance minor/patch updates (@​renovate[bot])
• #5895: chore(deps): update dependency eslint-plugin-unicorn to v58 (@​renovate[bot])

v4.37.0

4.37.0

2025-03-23

Features

• Support Musl Linux on Riscv64 architectures (#5726)
• Handles class decorators placed before the export keyword (#5871)

Bug Fixes

• Log Rust panic messages to the console when using the WASM build (#5875)

Pull Requests

• #5726: Add support for linux riscv64 musl (@​fossdd, @​leso-kn)
• #5871: feat: support decorators before or after export (@​TrickyPi)
• #5875: capture Rust panic messages and output them to the console. (@​luyahan, @​lukastaegert)
• #5883: Pin digest of 3rd party actions (@​re-taro)
• #5885: fix(deps): lock file maintenance minor/patch updates (@​renovate[bot])

Changelog

Sourced from rollup's changelog.

4.38.0

2025-03-29

Features

• Support .filter option in resolveId, load and transform hooks (#5882)

Pull Requests

• #5882: Add support for hook filters (@​sapphi-red)
• #5894: fix(deps): lock file maintenance minor/patch updates (@​renovate[bot])
• #5895: chore(deps): update dependency eslint-plugin-unicorn to v58 (@​renovate[bot])

4.37.0

2025-03-23

Features

• Support Musl Linux on Riscv64 architectures (#5726)
• Handles class decorators placed before the export keyword (#5871)

Bug Fixes

• Log Rust panic messages to the console when using the WASM build (#5875)

Pull Requests

• #5726: Add support for linux riscv64 musl (@​fossdd, @​leso-kn)
• #5871: feat: support decorators before or after export (@​TrickyPi)
• #5875: capture Rust panic messages and output them to the console. (@​luyahan, @​lukastaegert)
• #5883: Pin digest of 3rd party actions (@​re-taro)
• #5885: fix(deps): lock file maintenance minor/patch updates (@​renovate[bot])

Commits

• 22b64bc 4.38.0
• 41a0b6f Add support for hook filters (#5882)
• f660c34 chore(deps): update dependency eslint-plugin-unicorn to v58 (#5895)
• e192a67 fix(deps): lock file maintenance minor/patch updates (#5894)
• 8b1c634 4.37.0
• 43cb194 Add support for linux riscv64 musl (#5726)
• 4b4d633 capture Rust panic messages and output them to the console. (#5875)
• a48b515 feat: support decorators before or after export (#5871)
• 17824d9 Pin digest of 3rd party actions (#5883)
• 384d533 fix(deps): lock file maintenance minor/patch updates (#5885)
• See full diff in compare view

Updates ts-jest from 29.2.6 to 29.3.0

Release notes

Sourced from ts-jest's releases.

v29.3.0

Please refer to CHANGELOG.md for details.

Changelog

Sourced from ts-jest's changelog.

29.3.0 (2025-03-21)

Features

• feat: support hybrid module values for isolatedModules: true (f372121)

Bug Fixes

• fix: set customConditions to undefined in TsCompiler (b091d70), closes #4620

Code Refactoring

• refactor: remove manual version checker (89458fc)
• refactor: remove patching deps based on version checker (bac4c43)
• refactor: deprecate RawCompilerOptions interface (2b1b6cd)
• refactor: deprecate transform option isolatedModules (7dfef71)

DEPRECATIONS

• RawCompilerOptions is deprecated in favor of TsConfigJson.CompilerOptions from type-fest
• isolatedModules transform option is deprecated in favor of https://www.typescriptlang.org/tsconfig/#isolatedModules

Commits

• 0ac3891 chore(release): 29.3.0
• 4a33ec1 docs: update new compiler options interface
• 130057e build(deps): Update dependency eslint-plugin-prettier to ^5.2.4
• f372121 feat: support hybrid module values for isolatedModules: true
• 273dba1 build(deps): Update dependency eslint-plugin-jsdoc to ^50.6.9
• f515157 build(deps): Update ESLint packages
• 708861b build(deps): Update dependency @​formatjs/ts-transformer to ^3.13.33
• 91cd0a6 build(deps): Update dependency @​types/node to v20.17.25
• 7c78c17 build(deps): Update ESLint packages to ^8.27.0
• 2b1b6cd refactor: deprecate RawCompilerOptions interface
• Additional commits viewable in compare view

Updates typescript-eslint from 8.27.0 to 8.28.0

Release notes

Sourced from typescript-eslint's releases.

v8.28.0

8.28.0 (2025-03-24)

🚀 Features

• eslint-plugin: [prefer-nullish-coalescing] support if statement assignment (??=) and fix several minor bugs (#10861)

🩹 Fixes

• eslint-plugin: [no-unsafe-function-type] remove fixable property (#10986)

❤️ Thank You

• Olivier Zalmanski @​OlivierZal
• Yannick Decat @​mho22

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from typescript-eslint's changelog.

8.28.0 (2025-03-24)

This was a version bump only for typescript-eslint to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

Commits

• 807f5ca chore(release): publish 8.28.0
• 649309f chore(typescript-eslint): migrate from jest to vitest (#10772)
• See full diff in compare view

Updates webpack-dev-server from 5.2.0 to 5.2.1

Release notes

Sourced from webpack-dev-server's releases.

v5.2.1

5.2.1 (2025-03-26)

Security

• cross-origin requests are not allowed unless allowed by Access-Control-Allow-Origin header
• requests with an IP addresses in the Origin header are not allowed to connect to WebSocket server unless configured by allowedHosts or it different from the Host header

The above changes may make the dev server not work if you relied on such behavior, but unfortunately they carry security risks, so they were considered as fixes.

Bug Fixes

• prevent overlay for errors caught by React error boundaries (#5431) (8c1abc9)
• take the first network found instead of the last one, this restores the same behavior as 5.0.4 (#5411) (ffd0b86)

Changelog

Sourced from webpack-dev-server's changelog.

5.2.1 (2025-03-26)

Security

• cross-origin requests are not allowed unless allowed by Access-Control-Allow-Origin header
• requests with an IP addresses in the Origin header are not allowed to connect to WebSocket server unless configured by allowedHosts or it different from the Host header

The above changes may make the dev server not work if you relied on such behavior, but unfortunately they carry security risks, so they were considered as fixes.

Bug Fixes

• prevent overlay for errors caught by React error boundaries (#5431) (8c1abc9)
• take the first network found instead of the last one, this restores the same behavior as 5.0.4 (#5411) (ffd0b86)

Commits

• 0d22a08 chore(release): 5.2.1
• 6045b1e chore(deps): update (#5444)
• ffd0b86 fix: take the first network found instead of the last one, this restores the ...
• 9ea7b08 ci: update dependency-review-action (#5442)
• 5c9378b Merge commit from fork
• d2575ad Merge commit from fork
• 8c1abc9 fix: prevent overlay for errors caught by React error boundaries (#5431)
• 5a39c70 ci: update codecov/codecov-action to v5 (#5406)
• 55220a8 chore(deps-dev): bump the dependencies group across 1 directory with 4 update...
• 09f6f8e chore(deps): bump the dependencies group across 1 directory with 2 updates (#...
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[coveralls]

coverage: 100.0%. remained the same
when pulling 6e989f7 on dependabot/npm_and_yarn/dependencies-dev-a97ebdb2d7
into 9b002eb on master.