Bump the npm-deps group with 7 updates

[dependabot]

Bumps the npm-deps group with 7 updates:

Package	From	To
bootstrap	5.3.1	5.3.2
@minify-html/node	0.11.1	0.15.0
esbuild	0.19.2	0.19.11
highlight.js	11.8.0	11.9.0
marked	5.1.2	11.1.1
marked-highlight	2.0.4	2.1.0
prettier	3.0.3	3.1.1

Updates bootstrap from 5.3.1 to 5.3.2

Release notes

Sourced from bootstrap's releases.

v5.3.2

Highlights

• Passing a percentage unit to the global abs() is deprecated since Dart Sass v1.65.0. It resulted in a deprecation warning when compiling Bootstrap with Dart Sass. This has been fixed internally by changing the values passed to the divide() function. The divide() function has not been fixed itself so that we can keep supporting node-sass cross-compatibility. In v6, this won't be an issue as we plan to drop support for node-sass.
• Using multiple ids in a collapse target wasn't working anymore and has been fixed.

Color modes

• Increased color contrast of form range track background in light and dark modes.
• Fixed table state rendering for color modes with a focus on the striped table in dark mode to increase color contrast.
• Allow <mark> color customization for color modes.

Docs

• Added alternative CDNs section in Getting started -> Download.
• Added Discord and Bootstrap subreddit links in README and Getting started -> Introduction:
  • Discord maintained by the community
  • Bootstrap subreddit

---

🎨 CSS

• #38816: Use box-shadow CSS variables shadow utilities
• #38955: Fix radios looking like ellipse on responsive mode
• #38976: Use box-shadow CSS vars instead of Sass vars in assets and variables
• #39030: Fix dart-sass deprecation warning
• #39033: Color mode: fix table state rendering
• #39095: Make form range track background more contrasted
• #39119: New Sass var $btn-link-focus-shadow-rgb to allow customization
• #39141: New Sass variable to handle <mark> dark mode bg color

☕️ JavaScript

• #38989: Collapse: Fix multiple ids calls
• #39046: Dropdown: reuse variable

📖 Docs

• #38873: Discord reddit bootstrap
• #38970: docs: add BootstrapVueNext to docs
• #38977: Docs: Add missing form elements in focusable elements
• #38978: Docs: Fix popover template role error
• #38995: introduction: drop details element
• #39037: Further improve image compression with oxipng and the latest jpegoptim
• #39054: Docs: Remove incorrect mention of .left- and .right- utilities from migration guide
• #39060: Migration: add back v5.0.0 heading
• #39145: Docs: add warning callout to add a workaround when jsDelivr is not available
• #39177: Fix: make theme selector tick icon visible when active in examples layout
• #39179: download: Reword CDN paragraph

... (truncated)

Commits

• 344e912 Release v5.3.2 (#39173)
• 317cb2a download: Reword CDN paragraph (#39179)
• 8df9899 Fix: make theme selector tick icon visible when active in examples layout (#3...
• 256ad91 README.md: remove BrowserStack badge (#39180)
• 8816177 Update devDependencies (#39174)
• 52edf18 Build(deps): Bump actions/checkout from 3 to 4 (#39148)
• 9900cf3 Fix collapse multiple ids target (#38989)
• d1d49ff New $btn-link-focus-shadow-rgb for color modes customisation (#39119)
• bde23ae Allow \<mark> colors customization for color modes (#39141)
• bb10c99 Add defensive CSS to handle form check input in fleboxes (#38955)
• Additional commits viewable in compare view

Updates @minify-html/node from 0.11.1 to 0.15.0

Changelog

Sourced from @​minify-html/node's changelog.

0.15.0

• Add keep_input_type_text_attr option to keep type=text on <input> elements.
• [Java] The Configuration class constructor has been made private to enforce the use of the builder. The constructor has a lot of params which can easily cause bugs due to ordering and confusion.

0.14.0

• Add new options to parse and preserve common templating syntax in content source code. NOTE: The parsing is "dumb" and merely looks for the next subsequence in the source code that matches the closing delimiter characters. This means that literal closing delimiter characters (e.g. strings) and nesting may cause parsing to be incorrect.
  • preserve_brace_template_syntax: When {{, {#, or {% are seen in content, all source code until the subsequent matching closing }}, #}, or %} respectively gets piped through untouched.
    • Templating engines: Pebble, Mustache, Django, Go, Jinja, Twix, Nunjucks, Handlebars, Liquid.
  • preserve_chevron_percent_template_syntax: When <% is seen in content, all source code until the subsequent matching closing %> gets piped through untouched.
    • Templating engines: Sailfish, JSP, EJS, ERB.

0.13.3

• Avoid downloading html-data JSON from network on build.

0.13.2

• [Java] Set up cross compilation for macOS and Linux ARM64 builds.

0.13.1

• [CLI] Add missing Cargo metadata.

0.13.0

• Use lightningcss instead of css-minify, which is better maintained.
  • BREAKING: The minify_css_level_* Cfg options no longer apply and have been removed.
• [onepass] Implement Display and Error for Error and FriendlyError structs.

0.12.0

• Change CLI name to minhtml as it's a more concise command name and allows for cargo install minhtml.
• Add keep_ssi_comments to preserve SSI comments.
• [Ruby] BREAKING: The class method is now a global function, so call minify_html instead of MinifyHtml.minify. All else remains the same. This is due to migrating from Rutie (see 0.11.3).
  • This change was inadvertently released in patch version bumps from 0.11.3 to 0.11.5; these gems have been yanked.

0.11.5

• Omit Rust source files from Node.js package.

0.11.4

• Bump minify-js version.
• Fix Node.js native package names.

0.11.3

• Fix detection of module type scripts.

... (truncated)

Commits

• 4c43960 0.15.0
• ce73a8a Reformatting
• b82b186 Propagate keep_input_type_text_attr option; make Java Configuration class con...
• 389adcf Implement keep_input_type_text_attr option
• 30cd348 0.14.0
• d6bd553 Fix CLI arg parser
• 02dc4c6 Update README
• fb27378 Update CHANGELOG
• 2a05b42 Propagate template syntax preservation Cfg
• 91971fe Implement parsing and preservation of common templating syntax
• Additional commits viewable in compare view

Updates esbuild from 0.19.2 to 0.19.11

Release notes

Sourced from esbuild's releases.

v0.19.11

• Fix TypeScript-specific class transform edge case (#3559)

  The previous release introduced an optimization that avoided transforming super() in the class constructor for TypeScript code compiled with useDefineForClassFields set to false if all class instance fields have no initializers. The rationale was that in this case, all class instance fields are omitted in the output so no changes to the constructor are needed. However, if all of this is the case and there are #private instance fields with initializers, those private instance field initializers were still being moved into the constructor. This was problematic because they were being inserted before the call to super() (since super() is now no longer transformed in that case). This release introduces an additional optimization that avoids moving the private instance field initializers into the constructor in this edge case, which generates smaller code, matches the TypeScript compiler's output more closely, and avoids this bug:

  // Original code
  class Foo extends Bar {
    #private = 1;
    public: any;
    constructor() {
      super();
    }
  }
  // Old output (with esbuild v0.19.9)
  class Foo extends Bar {
  constructor() {
  super();
  this.#private = 1;
  }
  #private;
  }
  // Old output (with esbuild v0.19.10)
  class Foo extends Bar {
  constructor() {
  this.#private = 1;
  super();
  }
  #private;
  }
  // New output
  class Foo extends Bar {
  #private = 1;
  constructor() {
  super();
  }
  }

• Minifier: allow reording a primitive past a side-effect (#3568)

  The minifier previously allowed reordering a side-effect past a primitive, but didn't handle the case of reordering a primitive past a side-effect. This additional case is now handled:

  // Original code
  function f() {
    let x = false;

... (truncated)

Changelog

Sourced from esbuild's changelog.

0.19.11

• Fix TypeScript-specific class transform edge case (#3559)

  The previous release introduced an optimization that avoided transforming super() in the class constructor for TypeScript code compiled with useDefineForClassFields set to false if all class instance fields have no initializers. The rationale was that in this case, all class instance fields are omitted in the output so no changes to the constructor are needed. However, if all of this is the case and there are #private instance fields with initializers, those private instance field initializers were still being moved into the constructor. This was problematic because they were being inserted before the call to super() (since super() is now no longer transformed in that case). This release introduces an additional optimization that avoids moving the private instance field initializers into the constructor in this edge case, which generates smaller code, matches the TypeScript compiler's output more closely, and avoids this bug:

  // Original code
  class Foo extends Bar {
    #private = 1;
    public: any;
    constructor() {
      super();
    }
  }
  // Old output (with esbuild v0.19.9)
  class Foo extends Bar {
  constructor() {
  super();
  this.#private = 1;
  }
  #private;
  }
  // Old output (with esbuild v0.19.10)
  class Foo extends Bar {
  constructor() {
  this.#private = 1;
  super();
  }
  #private;
  }
  // New output
  class Foo extends Bar {
  #private = 1;
  constructor() {
  super();
  }
  }

• Minifier: allow reording a primitive past a side-effect (#3568)

  The minifier previously allowed reordering a side-effect past a primitive, but didn't handle the case of reordering a primitive past a side-effect. This additional case is now handled:

  // Original code
  function f() {

... (truncated)

Commits

• 6ee8225 publish 0.19.11 to npm
• f8ae3af fix #3561: treeshaking of known Symbol instances
• 0811058 switch define data to flags
• f5f8ff8 fix #3568: can reorder primitive past side-effect
• 914f608 fix #3558: put the stop() api call back
• 2aa166b fix #3559: fix recent class transform regression
• 55e1127 publish 0.19.10 to npm
• d968af2 fix #3511: @__NO_SIDE_EFFECTS__ with templates
• 00c4ebe fix #3546: don't transform require glob imports
• e1b7050 fix #3319: missing symbol usage in glob transform
• Additional commits viewable in compare view

Updates highlight.js from 11.8.0 to 11.9.0

Release notes

Sourced from highlight.js's releases.

11.9.0 - Fall is in the air!

Version 11.9.0

CAVEATS / POTENTIALLY BREAKING CHANGES

• Drops support for Node 14.x, which is no longer supported by Node.js.
• In the node build styles/*.css files now ship un-minified with minified counterparts as: styles/*.min.css [mvorisek][] (this makes things consistent with our cdn builds)

Parser:

• (enh) prevent re-highlighting of an element [joshgoebel][]
• (chore) Remove discontinued badges from README [Bradley Mackey][]
• (chore) Fix build size report [Bradley Mackey][]

New Grammars:

• added 3rd party Iptables grammar to SUPPORTED_LANGUAGES [Checconio][]
• added 3rd party x86asmatt grammar to SUPPORTED_LANGUAGES [gondow][]
• added 3rd party riscv64 grammar to SUPPORTED_LANGUAGES [aana-h2][]
• added 3rd party Ballerina grammar to SUPPORTED_LANGUAGES [Yasith Deelaka][]

Core Grammars:

• fix(rust) added negative-lookahead for callable keywords if while for [Omar Hussein][]
• enh(armasm) added x0-x30 and w0-w30 ARMv8 registers [Nicholas Thompson][]
• enh(haxe) added final, is, macro keywords and $ identifiers [Robert Borghese][]
• enh(haxe) support numeric separators and suffixes [Robert Borghese][]
• fix(haxe) fixed metadata arguments and support non-colon syntax [Robert Borghese][]
• fix(haxe) differentiate abstract declaration from keyword [Robert Borghese][]
• fix(bash) do not delimit a string by an escaped apostrophe [hancar][]
• enh(swift) support macro keyword [Bradley Mackey][]
• enh(swift) support parameter pack keywords [Bradley Mackey][]
• enh(swift) regex literal support [Bradley Mackey][]
• enh(swift) @unchecked and @Sendable support [Bradley Mackey][]
• enh(scala) add using directives support //> using foo bar [Jamie Thompson][]
• fix(scala) fixed comments in constructor arguments not being properly highlighted [Isaac Nonato][]
• enh(swift) ownership modifiers support [Bradley Mackey][]
• enh(nsis) Add !assert compiler flag [idleberg][]
• fix(haskell) do not treat double dashes inside infix operators as comments [Zlondrej][]
• enh(rust) added eprintln! macro [qoheniac][]
• enh(leaf) update syntax to 4.0 [Samuel Bishop][]
• fix(reasonml) simplify syntax and align it with ocaml [jchavarri][]
• fix(swift) warn_unqualified_access is an attribute [Bradley Mackey][]
• enh(swift) macro attributes are highlighted as keywords [Bradley Mackey][]
• enh(stan) updated for version 2.33 (#3859) [Brian Ward][]
• fix(css) added '_' css variable detection [Md Saad Akhtar][]
• enh(groovy) add record and var as keywords [Guillaume Laforge][]

... (truncated)

Changelog

Sourced from highlight.js's changelog.

Version 11.9.0

CAVEATS / POTENTIALLY BREAKING CHANGES

• Drops support for Node 14.x, which is no longer supported by Node.js.
• In the node build styles/*.css files now ship un-minified with minified counterparts as: styles/*.min.css [mvorisek][] (this makes things consistent with our cdn builds)

Parser:

• (enh) prevent re-highlighting of an element [joshgoebel][]
• (chore) Remove discontinued badges from README [Bradley Mackey][]
• (chore) Fix build size report [Bradley Mackey][]

New Grammars:

• added 3rd party Iptables grammar to SUPPORTED_LANGUAGES [Checconio][]
• added 3rd party x86asmatt grammar to SUPPORTED_LANGUAGES [gondow][]
• added 3rd party riscv64 grammar to SUPPORTED_LANGUAGES [aana-h2][]
• added 3rd party Ballerina grammar to SUPPORTED_LANGUAGES [Yasith Deelaka][]

Core Grammars:

• fix(rust) added negative-lookahead for callable keywords if while for [Omar Hussein][]
• enh(armasm) added x0-x30 and w0-w30 ARMv8 registers [Nicholas Thompson][]
• enh(haxe) added final, is, macro keywords and $ identifiers [Robert Borghese][]
• enh(haxe) support numeric separators and suffixes [Robert Borghese][]
• fix(haxe) fixed metadata arguments and support non-colon syntax [Robert Borghese][]
• fix(haxe) differentiate abstract declaration from keyword [Robert Borghese][]
• fix(bash) do not delimit a string by an escaped apostrophe [hancar][]
• enh(swift) support macro keyword [Bradley Mackey][]
• enh(swift) support parameter pack keywords [Bradley Mackey][]
• enh(swift) regex literal support [Bradley Mackey][]
• enh(swift) @unchecked and @Sendable support [Bradley Mackey][]
• enh(scala) add using directives support //> using foo bar [Jamie Thompson][]
• fix(scala) fixed comments in constructor arguments not being properly highlighted [Isaac Nonato][]
• enh(swift) ownership modifiers support [Bradley Mackey][]
• enh(nsis) Add !assert compiler flag [idleberg][]
• fix(haskell) do not treat double dashes inside infix operators as comments [Zlondrej][]
• enh(rust) added eprintln! macro [qoheniac][]
• enh(leaf) update syntax to 4.0 [Samuel Bishop][]
• fix(reasonml) simplify syntax and align it with ocaml [jchavarri][]
• fix(swift) warn_unqualified_access is an attribute [Bradley Mackey][]
• enh(swift) macro attributes are highlighted as keywords [Bradley Mackey][]
• enh(stan) updated for version 2.33 (#3859) [Brian Ward][]
• fix(css) added '_' css variable detection [Md Saad Akhtar][]
• enh(groovy) add record and var as keywords [Guillaume Laforge][]

... (truncated)

Commits

• f47103d (chore) release with v20 of Node
• 59ac021 bump 11.9.0
• aa09381 gem bumps
• 1a531f5 fix(rust) Add negative-lookahead for fn like keywords (#3883)
• fa9a62c enh(groovy) Add record and var keywords (#3872)
• a1a1235 fix(css) variable '_' detection #3823 (#3863)
• 2708bf9 (typo) Update README.md (#3869)
• 58dc596 Update Stan syntax to version 2.33 (#3859)
• 694eb52 (enh) Add Ballerina to supported languages (#3852)
• a20b348 Bump actions/checkout from 3 to 4 (#3854)
• Additional commits viewable in compare view

Updates marked from 5.1.2 to 11.1.1

Release notes

Sourced from marked's releases.

v11.1.1

11.1.1 (2023-12-31)

Bug Fixes

• improve lexing inline elements step's performance (#3146) (4f87b2a)

v11.1.0

11.1.0 (2023-12-12)

Features

• add processAllTokens hook (#3114) (faae243)

v11.0.1

11.0.1 (2023-12-08)

Bug Fixes

• allow Renderer class in marked.use (#3118) (a287433)

v11.0.0

11.0.0 (2023-11-29)

Bug Fixes

• clean up rules so they can be typed (#3087) (175fc0c)
• fix marked types (#3103) (edae309)

BREAKING CHANGES

• Lexer.rules object has been changed so it can be properly types. Some intermediate rules have been removed.

v10.0.0

10.0.0 (2023-11-11)

Bug Fixes

• run spec tests with testutils (#3017) (014d4e6)

BREAKING CHANGES

• drop support for node v16

... (truncated)

Commits

• 05cbf5f chore(release): 11.1.1 [skip ci]
• 4f87b2a fix: improve lexing inline elements step's performance (#3146)
• baed07a chore(deps-dev): Bump eslint-plugin-n from 16.3.1 to 16.5.0 (#3145)
• 0761c1e chore(deps-dev): Bump rollup from 4.6.1 to 4.9.1 (#3144)
• 4ba572a chore(deps-dev): Bump @​semantic-release/github from 9.2.5 to 9.2.6 (#3143)
• f15e8ea chore(deps-dev): Bump @​arethetypeswrong/cli from 0.13.3 to 0.13.5 (#3142)
• de96644 chore(deps-dev): Bump @​typescript-eslint/eslint-plugin from 6.13.1 to 6.15.0 ...
• dede669 chore(deps-dev): Bump semantic-release from 22.0.8 to 22.0.12 (#3138)
• b8421b5 chore(deps-dev): Bump marked-highlight from 2.0.7 to 2.1.0 (#3139)
• c491c91 chore(deps-dev): Bump eslint from 8.55.0 to 8.56.0 (#3140)
• Additional commits viewable in compare view

Updates marked-highlight from 2.0.4 to 2.1.0

Release notes

Sourced from marked-highlight's releases.

v2.1.0

2.1.0 (2023-12-15)

Features

• expose full info string (#190) (42204fb)

v2.0.9

2.0.9 (2023-12-04)

Bug Fixes

• define types in exports (#179) (ae5af26)

v2.0.8

2.0.8 (2023-11-30)

Bug Fixes

• allow marked v11 (#178) (25c5d7e)

v2.0.7

2.0.7 (2023-11-11)

Bug Fixes

• allow marked v10 (#171) (a576ad5)

v2.0.6

2.0.6 (2023-09-11)

Bug Fixes

• support marked v9 (#125) (7180777)

v2.0.5

2.0.5 (2023-09-03)

Bug Fixes

• allow marked v8 (#117) (1582d46)

Commits

• 7a2fa59 chore(release): 2.1.0 [skip ci]
• 0bd915f chore: clean up code
• 42204fb feat: expose full info string (#190)
• 66d1c2b Merge pull request #187 from markedjs/dependabot/npm_and_yarn/semantic-releas...
• d0a1a95 Merge pull request #188 from markedjs/dependabot/npm_and_yarn/babel/preset-en...
• 3c4d711 chore(deps-dev): Bump @​semantic-release/npm from 11.0.1 to 11.0.2
• d2ca00e chore(deps-dev): Bump @​babel/preset-env from 7.23.5 to 7.23.6
• 942641c Merge pull request #185 from markedjs/dependabot/npm_and_yarn/semantic-releas...
• 8816579 chore(deps-dev): Bump semantic-release from 22.0.8 to 22.0.10
• b4c7ab9 Merge pull request #186 from markedjs/dependabot/npm_and_yarn/semantic-releas...
• Additional commits viewable in compare view

Updates prettier from 3.0.3 to 3.1.1

Release notes

Sourced from prettier's releases.

3.1.1

🔗 Changelog

3.1.0

diff

🔗 Release note

Changelog

Sourced from prettier's changelog.

3.1.1

diff

Fix config file search (#15363 by @​fisker)

Previously, we start search for config files from the filePath as a directory, if it happened to be a directory and contains config file, it will be used by mistake.

├─ .prettierrc
└─ test.js         (A directory)
  └─ .prettierrc

// Prettier 3.1.0
await prettier.resolveConfigFile(new URL("./test.js", import.meta.url));
// <CWD>/test.js/.prettierrc
// Prettier 3.1.1
await prettier.resolveConfigFile(new URL("./test.js", import.meta.url));
// <CWD>/.prettierrc

Skip explicitly passed symbolic links with --no-error-on-unmatched-pattern (#15533 by @​sanmai-NL)

Since Prettier v3, we stopped following symbolic links, however in some use cases, the symbolic link patterns can't be filtered out, and there is no way to prevent Prettier from throwing errors.

In Prettier 3.1.1, you can use --no-error-on-unmatched-pattern to simply skip symbolic links.

Consistently use tabs in ternaries when useTabs is true (#15662 by @​auvred)

// Input
aaaaaaaaaaaaaaa
	? bbbbbbbbbbbbbbbbbb
	: ccccccccccccccc
	  ? ddddddddddddddd
	  : eeeeeeeeeeeeeee
	    ? fffffffffffffff
	    : gggggggggggggggg;
// Prettier 3.1.0
aaaaaaaaaaaaaaa
? bbbbbbbbbbbbbbbbbb
: ccccccccccccccc
? ddddddddddddddd
: eeeeeeeeeeeeeee
? fffffffffffffff
</tr></table>

... (truncated)

Commits

• b86701d Release 3.1.1
• c97480c Use attributes instead of deprecated assertions (#15758)
• 0d1ffb3 Consistently use tabs in ternaries when useTabs is true (#15662)
• 5f7aedc fix example to fit the actual experimentalTernaries behaviour (#15747)
• 1e30f66 Remove claim, untrue since over 5 years ago, that cursorOffset is incompatibl...
• 39e4e7b Add cursorOffset to Playground (#15751)
• 8e816ad Allow skipping symlink patterns, to avoid raising a fault (#15533)
• 2ca5d75 Fix expect call in dts test (#15766)
• 15c7428 chore(deps): update dependency flow-parser to v0.223.3 (#15760)
• d3b3d4f chore(deps): update dependency hermes-parser to v0.18.0 (#15761)
• Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
marked	[>= 7.a, < 8]
marked	[>= 6.a, < 7]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.