[Snyk] Upgrade @reduxjs/toolkit from 1.9.5 to 2.2.5

[WontonSam]

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade @reduxjs/toolkit from 1.9.5 to 2.2.5.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

⚠️ Warning: This PR contains major version upgrade(s), and may be a breaking change.

• The recommended version is 27 versions ahead of your current version.

• The recommended version was released on 2 months ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ADOBECSSTOOLS-6096077	124	No Known Exploit
	Path Traversal SNYK-JS-WEBPACKDEVMIDDLEWARE-6476555	124	Proof of Concept
	Denial of Service (DoS) SNYK-JS-WS-7266574	124	Proof of Concept
	Denial of Service (DoS) SNYK-JS-WS-7266574	124	Proof of Concept
	Incomplete List of Disallowed Inputs SNYK-JS-BABELTRAVERSE-5962462	124	Proof of Concept
	Uncontrolled resource consumption SNYK-JS-BRACES-6838727	124	Proof of Concept
	Improper Input Validation SNYK-JS-FOLLOWREDIRECTS-6141137	124	Proof of Concept
	Inefficient Regular Expression Complexity SNYK-JS-MICROMATCH-6838728	124	No Known Exploit
	Improper Control of Dynamically-Managed Code Resources SNYK-JS-EJS-6689533	124	No Known Exploit
	Open Redirect SNYK-JS-EXPRESS-6474509	124	No Known Exploit
	Information Exposure SNYK-JS-FOLLOWREDIRECTS-6444610	124	Proof of Concept

Release notes

Package name: @reduxjs/toolkit

• 2.2.5 - 2024-05-16
  

  This bugfix release fixes an issue in the recent createEntityAdapter sorting perf improvements that could (in specific cases) cause Immer to throw an error when trying to read a plain JS value instead of a proxy-wrapped value.

  What's Changed

  • Fix missed spot where use of current may fail if the value is not a draft by @ markerikson in #4412

  Full Changelog: v2.2.4...v2.2.5

• 2.2.4 - 2024-05-09
  

  This bugfix release improves sorting performance in createEntityAdapter, shrinks the code size in matcher utilities, fixes assorted issues with query hooks, and makes several TS tweaks.

  Changelog

  Entity Adapter Sorting Performance

  Users reported in #4252 that the sorting performance of createEntityAdapter seemed abnormally bad - the provided comparison functions were being called far more times than expected.

  Upon investigation, we had a couple of problems. We were always starting from an array that was in insertion order, not the existing sorted order, and that would always require significant effort to re-sort even if there weren't any actual changes to the sorted results. Also, the sorting checks required frequent access to Immer's Proxy-wrapped values, even in cases where all we needed was the plain state values for comparison purposes.

  We've reworked the internal sorting logic to always start from the existing sorted array, do reads against a plain value to avoid the Proxy getter overhead where possible, and optimized inserts into existing sorted arrays. This should significantly speed up sorted entity adapter behavior.

  Matcher Code Size Optimization

  We've reworked the internals of the thunk-related matchers to deduplicate some of the logic, shaving a few bytes off the final bundle size.

  RTK Query Hook Updates

  defaultSerializeQueryArgs can now handle BigInt values safely.

  The isLoading flag logic was improved to handle errors when a query hook tries to subscribe.

  TS Updates

  create.asyncThunk's types were improved to avoid cases where it might infer any.

  We've made several internal types changes to work correctly with React 19's upcoming types.

  The retryCondition method now receives unknown as an argument, instead of always assuming the user is using fetchBaseQuery.

  Other Changes

  The Reselect dep has been bumped to 5.1.0 to match the expected internal usage of createSelector.withTypes().

  What's Changed

  • Update remaining Context references to match the new nullable Context by @ aryaemami59 in #4336
  • types: export GetThunkAPI type by @ shrouxm in #4289
  • Inline the deprecated React.ReactChild type by @ aryaemami59 in #4382
  • Replace usage of deprecated JSX global namespace with React.JSX by @ aryaemami59 in #4381
  • Fix useRef usages to be called with an explicit argument of undefined. by @ aryaemami59 in #4380
  • Bump reselect dependency to 5.1.0 to resolve #4200 by @ aryaemami59 in #4400
  • Improve sorted entity adapter sorting performance by @ markerikson in #4361
  • Prevent inference of any in create.asyncThunk by @ EskiMojo14 in #4389
  • try out simplifying matcher code by @ EskiMojo14 in #4386
  • Handle bigint in useQuerySubscription by @ rkofman in #4315
  • fix: ensure hook subscription failures do not reset isLoading state by @ smacpherson64 in #4364
  • Improve usability of the initiate() action for mutations. by @ jared-ca in #4337
  • Make retryCondition receive unknown error, as the user may not be using fetchBaseQuery by @ EskiMojo14 in #3957

  Full Changelog: v2.2.3...v2.2.4

• 2.2.3 - 2024-03-31
  

  This bugfix release fixes the types for functions that accept a React Context instance to match the changes in React Redux v9.

  What's Changed

  • Update React Redux dependency to v9, and update docs to use .withTypes by @ aryaemami59 in #4308

  Full Changelog: v2.2.2...v2.2.3

• 2.2.2 - 2024-03-21
  

  This patch release fixes an incorrect build setting for the legacy-esm artifacts, and fixes an issue with RTKQ query hooks didn't always remove the cache entries if arguments were changed rapidly.

  Changes

  legacy-esm Artifact Transpilation

  The legacy-esm build artifacts are intended for use by Webpack 4. Those were supposed to be transpiled to target "es2017", but were in fact still set to target "esnext" - an oversight during the 2.0 development cycle. This release fixes that setting, so those artifacts are now correctly transpiled.

  Other Fixes

  RTKQ query hooks now handle additional actions around argument changes that should result in cache entries being removed.

  Additionally, 2.2.1 contained a fix to an incorrectly named type: TypedUseMutationTrigger is now TypedMutationTrigger.

  What's Changed

  • rename TypedUseMutationTrigger to TypedMutationTrigger, and add deprecated alias by @ EskiMojo14 in #4204
  • Fixed memory leak in rapid hook arg changing by @ riqts in #4268
  • Fix incorrect legacy-esm target by @ markerikson in #4284

  Full Changelog: v2.2.0...v2.2.2

• 2.2.1 - 2024-02-14
  

  Release 2.2.1

• 2.2.0 - 2024-02-12
  

  This minor release:

  • Adds a second parameter to entityAdapter.getInitialState(additionalProps, entities) to allow prefilling state
    • Equivalent to entityAdapter.setAll(entityAdapter.getInitialState(additionalProps), entities)
    • First parameter can be undefined if no additional properties are desired
  • Allows initialising combineSlices with no static reducers
    • Previously const combinedReducer = combineSlices().withLazyLoadedSlices<LazyLoadedSlices>() would have thrown an error
    • Now returns a "no-op" reducer that just returns an empty object until first reducer injected
  • Allows a new 'throw' value for overrideExisting in injectEndpoints, which throws an error if a definition is injected with a name which is already used
  • Exports more type helpers for RTKQ hook and trigger types
  • Exports types related to overriding result types in enhanceEndpoints
  • Fixes state inference for injected slices when undeclared (i.e. not in LazyLoadedSlices)
  • Adds a action.meta.arg.isPrefetch value to query thunk actions when prefetched

  What's Changed

  • Revamp type tests setup by @ aryaemami59 in #4095
  • Bump Prettier and Prettier related packages by @ aryaemami59 in #4126
  • Fix codemods to work with TypeScript 4.7+ by @ aryaemami59 in #4081
  • Export types related to overriding the result types by @ aryaemami59 in #4134
  • Migrate type tests to Vitest by @ aryaemami59 in #4127
  • Fix RetryOptions type test by flipping order by @ EskiMojo14 in #4136
  • Format all files by @ aryaemami59 in #4135
  • [Docs/Website] skipPollingIfUnfocused added to polling overview and query options by @ riqts in #4131
  • [Docs] Changed create.asyncThunk setup admonition to caution by @ riqts in #4150
  • Temporarily revert node-fetch bump until ESM issues are sorted by @ EskiMojo14 in #4151
  • Contributing Markdown Refresh by @ itz-Me-Pj in #4139
  • investigate re-adding size limit action by @ EskiMojo14 in #4083
  • Add size limit imports for more commonly used RTK exports by @ EskiMojo14 in #4155
  • pure some things by @ EskiMojo14 in #4157
  • cut back on suffixes tested for size by @ EskiMojo14 in #4160
  • Incorrect builder method referenced by @ kantbtrue in #4161
  • Rename cli.js to cli.mjs by @ aryaemami59 in #4169
  • Migrate Codegen OpenAPI's unit tests to Vitest by @ aryaemami59 in #4137
  • Fix wrong state for injected slices when not declared via withLazyLoadedSlices by @ aryaemami59 in #4172
  • [Docs, createEntityAdapter API]: add missing setOne and setMany signature by @ kyselberg in #4173
  • Corrected the "Observing cache behaviour" example point no.4 by @ 721-atikshaikh in #4174
  • feat: add isPrefetch property in query action by @ juliengbt in #4177
  • allow initialising combined slice reducer with no static slices by @ EskiMojo14 in #4184
  • Create more Typed wrappers for RTKQ hook types by @ EskiMojo14 in #4147
  • proposal fix for axios base query types by @ smff in #4186
  • Provide 'throw' option for overrideExisting by @ ffluk3 in #4189
  • Use vite-tsconfig-paths to make path aliasing easier by @ aryaemami59 in #4175
  • Remove trailing commas in tsconfig.json files of all CodesandBox examples by @ aryaemami59 in #4190
  • [Docs] Added withTypes documentation in createDraftSafeSelector by @ riqts in #4143
  • Add second parameter to getInitialState to prefill entities by @ EskiMojo14 in #4183

  New Contributors

  • @ itz-Me-Pj made their first contribution in #4139
  • @ kantbtrue made their first contribution in #4161
  • @ kyselberg made their first contribution in #4173
  • @ 721-atikshaikh made their first contribution in #4174
  • @ smff made their first contribution in #4186
  • @ ffluk3 made their first contribution in #4189

  Full Changelog: v2.1.0...v2.2.0

• 2.1.0 - 2024-01-24
  

  This minor release:

  • adds withTypes methods to listenerMiddleware and createDraftSafeSelector
  • adds a skipPollingIfUnfocused option to RTK Query
  • adds the ability to customise the createSelector instance used by RTK Query
  • reworks slice selector logic to avoid depending on this value
  • fixes the order and inference of create.asyncThunk type parameters
  • fixes requirements for meta fields returned from queryFns
  • marks promises that will never reject as safe, in preparation for typescript-eslint/typescript-eslint#7008

  What's Changed

  • Update docs to avoid circular type by @ EskiMojo14 in #3948
  • Copy "Migrating to Modern Redux" and "RTK is Redux" docs from core site by @ markerikson in #3956
  • Fix store path rtk-query pokemon api tutorial by @ suspiciousRaccoon in #3611
  • tweak RTKQ without hooks section, and add note regarding memoization by @ EskiMojo14 in #3963
  • Add section regarding overriding deps by @ EskiMojo14 in #3968
  • Add section re: RR custom context typing change by @ EskiMojo14 in #3995
  • Add Expo demo app to CI workflow by @ aryaemami59 in #3985
  • docs: fix a typo in queries markdown file by @ fatihgnc in #4013
  • Preserve nullable store state type by avoiding intersection with {} by @ EskiMojo14 in #4011
  • Upgrade version of "graphql-request" by @ phryneas in #4026
  • [graphql-request-base-query] update RTK peerDependency by @ phryneas in #4027
  • fix: improve selectFromResult memoization by @ thisjeremiah in #4029
  • Rename "createSliceWithThunks" and "createThunkSlice" to "createAppSlice" by @ EskiMojo14 in #4035
  • Bump Vitest to latest version by @ aryaemami59 in #4047
  • fix inference and order of async thunk generics by @ EskiMojo14 in #4061
  • Fix markdown links on Next.js page by @ DmitryScaletta in #4069
  • Introduce pre-typed listener middleware via listenerMiddleware.withTypes<RootState, AppDispatch>() method by @ aryaemami59 in #4049
  • Add .withTypes to createDraftSafeSelector by @ aryaemami59 in #4080
  • Task/remove all settled by @ bever1337 in #3917
  • Allow customising createSelector instance used by RTKQ by @ EskiMojo14 in #4048
  • cacheLifecycle fix for fixedCacheKey in mutationThunk by @ riqts in #4082
  • avoid relying on this in createSlice by @ EskiMojo14 in #4071
  • documentation: fix grammar in redux and redux toolkit comparison by @ untilhamza in #4086
  • Update tsconfig.typetests.json to include all TS files by @ aryaemami59 in

[google-cla]

Thanks for your pull request! It looks like this may be your first contribution to a Google open source project. Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA).

View this failed invocation of the CLA check for more information.

For the most up to date status, view the checks section at the bottom of the pull request.