Bump datatables.net from 1.13.4 to 2.1.5 in /components

[dependabot]

Bumps datatables.net from 1.13.4 to 2.1.5.

Release notes

Sourced from datatables.net's releases.

1.13.11

DataTables 1.13.11

Commits

• 82b7af4 Sync tag release - 2.1.5
• c5d1afb d8c8900fbafa42a90aec216397ebf13095c10a20 Release 2.1.5
• 1470279 e6d7805c8832066ecf8917d9f42e67bb74ba03a3 Fix: Add classes for cells (`-init c...
• b1de1b4 ed2314c0cc69ceba50818ef16986764c0f1341c0 Build: Update SASS
• 08bb8bd a3f4416739610faf030e6a76d2389bbe385a4a78 Test: Slightly better handling for l...
• 37c1744 3c4df03c5e03c4c743fb5bdf0067ab3462a723e4 Fix: Column widths given by `-init c...
• fccf4ef b11d4b03ca9875b9ac1c281cbeb624aeea21989d Docs: Correct return type for `-api ...
• 931458e bb964802bde5810291ba683d3b158799591cd678 Fix: Bulma integration had two `<nav...
• 9a82f21 7f32828322eabfab3529968255944c9bc2dbd771 Dev: I missed a loop break
• d10f0d8 424f4b49816899f53e79cd4b19711583d3f4ec97 Fix: API instances created with a la...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dryrunsecurity]

DryRun Security Summary

The pull request updates the datatables.net dependency from version 1.13.4 to version 2.1.5 in the package.json and yarn.lock files, which is a positive change that likely addresses known security vulnerabilities, but requires thorough review of the release notes and change logs, as well as comprehensive testing to ensure no regressions or new vulnerabilities have been introduced.

Expand for full summary

Summary:

The code changes in this pull request involve updating the datatables.net dependency from version 1.13.4 to version 2.1.5 in the package.json and yarn.lock files. This is a major version update that could potentially introduce breaking changes or new features.

From an application security perspective, updating dependencies to their latest versions is generally a positive change, as it likely addresses known security vulnerabilities in the previous versions. However, it's important to thoroughly review the release notes and change logs for the new version of datatables.net to understand any security-related updates or fixes that have been introduced. Additionally, it's recommended to perform comprehensive testing of the application after the dependency update to ensure that no regressions or new vulnerabilities have been introduced.

Files Changed:

1. components/package.json: The datatables.net dependency has been updated from version 1.13.4 to version 2.1.5. This is a positive change, as it likely addresses known security vulnerabilities in the previous version of the library. However, it's essential to review the release notes and changelog to ensure that there are no known security vulnerabilities or breaking changes that could impact the application.

2. components/yarn.lock: The yarn.lock file has been updated to reflect the change in the datatables.net dependency version from 1.13.4 to 2.1.5. As with the package.json file, it's important to review the release notes and change logs for the new version to understand any security-related updates or fixes, and to thoroughly test the application after the dependency update.

Code Analysis

We ran 9 analyzers against 2 files and 1 analyzer had findings. 8 analyzers had no findings.

Analyzer	Findings
Sensitive Files Analyzer	1 finding

Riskiness

🟢 Risk threshold not exceeded.

View PR in the DryRun Dashboard.

[dependabot]

Superseded by #10883.