chore(deps-dev): bump the development-dependencies group across 1 directory with 7 updates

[dependabot]

Bumps the development-dependencies group with 7 updates in the /generator-angularjs directory:

Package	From	To
angular-mocks	1.3.18	1.8.3
babel-eslint	8.2.6	10.1.0
gulp	4.0.2	5.0.0
gulp-babel	7.0.1	8.0.0
jasmine-core	5.1.2	5.5.0
karma	6.4.2	6.4.4
karma-babel-preprocessor	7.0.0	8.0.2

Updates angular-mocks from 1.3.18 to 1.8.3

Changelog

Sourced from angular-mocks's changelog.

1.8.3 ultimate-farewell (2022-04-07)

One final release of AngularJS in order to update package README files on npm.

1.8.2 meteoric-mining (2020-10-21)

Bug Fixes

• $sceDelegate: ensure that resourceUrlWhitelist() is identical to trustedResourceUrlList() (e41f01, #17090)

1.8.1 mutually-supporting (2020-09-30)

Bug Fixes

• $sanitize: do not trigger CSP alert/report in Firefox and Chrome (2fab3d)

Refactorings

• SanitizeUriProvider: remove usages of whitelist (76738102)
• httpProvider: remove usages of whitelist and blacklist (c953af6b)
• sceDelegateProvider: remove usages of whitelist and blacklist (a206e267)

Deprecation Notices

• Deprecated $compileProvider.aHrefSanitizationWhitelist. It is now aHrefSanitizationTrustedUrlList.
• Deprecated $compileProvider.imgSrcSanitizationWhitelist. It is now imgSrcSanitizationTrustedUrlList.
• Deprecated $httpProvider.xsrfWhitelistedOrigins. It is now xsrfTrustedOrigins.
• Deprecated $sceDelegateProvider.resourceUrlWhitelist. It is now trustedResourceUrlList.
• Deprecated $sceDelegateProvider.resourceUrlBlacklist. It is now bannedResourceUrlList.

For the purposes of backward compatibility, the previous symbols are aliased to their new symbol.

1.8.0 nested-vaccination (2020-06-01)

_This release contains a breaking change to resolve a security issue which was discovered by Krzysztof Kotowicz(@​koto); and independently by Esben Sparre Andreasen (@​esbena) while

... (truncated)

Commits

• cf16b24 docs(changelog): add release notes for 1.8.3
• 757d56e docs(*): update end-of-life messages (#17177)
• f362437 docs(eol): add EOL options text and link to template header used in every page
• fb04e42 test(Angular): fix angularInit() tests on Safari v15+
• 6a52c4f test(input): fix tests on Firefox v93+
• ed30c4d docs(README.md): add wiki link to MVC
• 4032655 chore(deps): bump js-yaml from 3.5.5 to 3.14.1
• 47f8c65 chore(deps): bump normalize-url from 4.5.0 to 4.5.1
• 56b0ee3 chore(e2e): run tests against Chrome 91 on macOS Catalina
• 58cd897 chore(e2e): run tests against Firefox 85 on macOS Catalina
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by angular, a new releaser for angular-mocks since your current version.

Updates babel-eslint from 8.2.6 to 10.1.0

Release notes

Sourced from babel-eslint's releases.

v10.1.0

• Added ability to parse Flow enums #812 (@​gkz)

v10.0.3

Fixes babel/babel-eslint#791, also eslint/eslint#12117

Some context: babel/babel-eslint#793

We ended up going with @​JLHwung's PR babel/babel-eslint#794 which uses ESLint's deps instead of going with peerDeps since it really depends on the version being used and we don't want users to have to install it directly on their own.

babel-eslint is patching patches of the dependencies of ESLint itself so these kinds of issues have happened in the past. We'll need to look into figuring out how to have a more solid way of modifying behavior instead of this monkeypatching type of thing for future releases.

v10.0.2

Fixes babel/babel-eslint#772

v10.0.1

• Reverting babel/babel-eslint#584

The TypeAlias "conversion" to a function has issues. Sounds like we need to rethink the change, most likely we can just actually change the scoping rather than hardcode an AST change.

v10.0.0

Small breaking change: add a peerDependency starting from the ESLint version that added a parser feature that we were monkeypatching before (and drop that code). If already using ESLint 5 shouldn't be any different.

• Bugfix for TypeAlias: babel/babel-eslint#584

/* @flow */
type Node<T> = { head: T; tail: Node<T> }
// or
type File = {chunks: Array<Chunk>}
type Chunk = {file: File}

• Update to test against ESLint 5, add a peerDependency: babel/babel-eslint#689
• Drop monkeypatching behavior: babel/babel-eslint#690

v9.0.0

We've released v7: https://twitter.com/left_pad/status/1034204330352500736, so this just updates babel-eslint to use those versions internally. That in itself doesn't break anything but:

• Babel now supports the new decorators proposal by default, so we need to switch between the new and the old proposal. This is a breaking change.

To enable the legacy decorators proposal users should add a specific parser option:

{
</tr></table> 

... (truncated)

Commits

• 4bd049e 10.1.0
• 2c754a8 Update Babel to ^7.7.0 and enable Flow enums parsing (#812)
• 183d13e 10.0.3
• 354953d fix: require eslint dependencies from eslint base (#794)
• 48f6d78 10.0.2
• 0241b48 removed unused file reference (#773)
• 4cf0a21 10.0.1
• 98c1f13 Revert #584 (#697)
• 8f78e28 10.0.0
• 717fba7 test value should be switched
• Additional commits viewable in compare view

Updates gulp from 4.0.2 to 5.0.0

Release notes

Sourced from gulp's releases.

gulp v5.0.0

We've tried to provide a high-level changelog for gulp v5 below, but it doesn't contain all changes from the 60+ dependencies that we maintain.

Please see individual changelogs to drill down into all changes that were made.

⚠ BREAKING CHANGES

• Drop support for Node.js <10.13
• Default stream encoding to UTF-8
• Standardized on anymatch library for globbing paths. All globs should work the same between src and watch now!
• Removed support for ordered globs. This aligns with the chokidar globbing implementation. If you need your globs to be ordered, you can use ordered-read-stream
• All globs and paths are normalized to unix-like filepaths
• Only allow JS variants for .gulp.* config files
• Removed support for alpha releases of v4 from gulp-cli
• Removed the --verify flag
• Renamed the --require flag to --preload to avoid conflicting with Node.js flags
• Removed many legacy and deprecated loaders
• Upgrade to chokidar v3
• Clone Vinyl objects with stream contents using teex, but no longer wait for all streams to flow before cloned streams will receive data
• Stop using process.umask() to make directories, instead falling back to Node's default mode
• Throw on non-function, non-string option coercers
• Drop support of Node.js snake_case flags
• Use a Symbol for attaching the gulplog namespace to the store
• Use a Symbol for attaching the gulplog store to the global
• Use sha256 to hash the v8flags cache into a filename

Features

• Streamlined the dependency tree
• Switch all streams implementation to Streamx
• Rewrote glob-stream to use a custom directory walk that relies on newer Node.js features and is more performant than old implementation
• Implement translation support for all CLI messages and all messages passing through gulplog
• Allow users to customize or remove the timestamp from their logs
• Upgraded gulplog to v2. Messages logged via v1 will also display a deprecated warning. Plugins should update to v2 as the community upgrades to gulp 5
• Added support for gulpile.cjs and gulpfile.mjs
• Add support for swc, esbuild, sucrase, and mdx loaders
• Provide an ESM export (#2760) (b00de68)
• Support sourcemap handling on streaming Vinyl contents
• Support extends syntax for .gulp.* config file
• Allow overriding gulpfile and preloads via .gulp.* config file

Bug Fixes

• Resolve bugs related to symlinks on various platforms
• Resolved some reported ReDoS CVEs and improved performance in glob-parent
• Rework errors surfaced when encountering files or symlinks when trying to create directories
• Ensure watch allows japanese characters in globs (72668c6)

... (truncated)

Changelog

Sourced from gulp's changelog.

5.0.0 (2024-03-29)

We've tried to provide a high-level changelog for gulp v5 below, but it doesn't contain all changes from the 60+ dependencies that we maintain.

Please see individual changelogs to drill down into all changes that were made.

⚠ BREAKING CHANGES

• Drop support for Node.js <10.13
• Default stream encoding to UTF-8
• Standardized on anymatch library for globbing paths. All globs should work the same between src and watch now!
• Removed support for ordered globs. This aligns with the chokidar globbing implementation. If you need your globs to be ordered, you can use ordered-read-stream
• All globs and paths are normalized to unix-like filepaths
• Only allow JS variants for .gulp.* config files
• Removed support for alpha releases of v4 from gulp-cli
• Removed the --verify flag
• Renamed the --require flag to --preload to avoid conflicting with Node.js flags
• Removed many legacy and deprecated loaders
• Upgrade to chokidar v3
• Clone Vinyl objects with stream contents using teex, but no longer wait for all streams to flow before cloned streams will receive data
• Stop using process.umask() to make directories, instead falling back to Node's default mode
• Throw on non-function, non-string option coercers
• Drop support of Node.js snake_case flags
• Use a Symbol for attaching the gulplog namespace to the store
• Use a Symbol for attaching the gulplog store to the global
• Use sha256 to hash the v8flags cache into a filename

Features

• Streamlined the dependency tree
• Switch all streams implementation to Streamx
• Rewrote glob-stream to use a custom directory walk that relies on newer Node.js features and is more performant than old implementation
• Implement translation support for all CLI messages and all messages passing through gulplog
• Allow users to customize or remove the timestamp from their logs
• Upgraded gulplog to v2. Messages logged via v1 will also display a deprecated warning. Plugins should update to v2 as the community upgrades to gulp 5
• Added support for gulpile.cjs and gulpfile.mjs
• Add support for swc, esbuild, sucrase, and mdx loaders
• Provide an ESM export (#2760) (b00de68)
• Support sourcemap handling on streaming Vinyl contents
• Support extends syntax for .gulp.* config file
• Allow overriding gulpfile and preloads via .gulp.* config file

Bug Fixes

• Resolve bugs related to symlinks on various platforms
• Resolved some reported ReDoS CVEs and improved performance in glob-parent
• Rework errors surfaced when encountering files or symlinks when trying to create directories
• Ensure watch allows japanese characters in globs (72668c6)

... (truncated)

Commits

• 5c4c547 chore: Release 5.0.0 (#2762)
• bf72116 chore: Add index.mjs to files list
• b00de68 feat: Provide an ESM export (#2760)
• 72668c6 chore!: Normalize repository, dropping node <10.13 support (#2758)
• 85896d4 chore(docs): Update stream handbook link (#2711)
• 818bd73 Docs: Remove gulp-sourcemaps because it is built-in (#2592)
• 598f971 Docs: Fix broken link in recipe (#2571)
• 9877de0 Docs: Guide CustomRegistries to maintain properties on tasks (fixes #2561) (#...
• f91c388 Docs: Remove typo in custom registry docs (#2543)
• df25250 Docs: Fix typo in task docs (#2524)
• Additional commits viewable in compare view

Updates gulp-babel from 7.0.1 to 8.0.0

Release notes

Sourced from gulp-babel's releases.

v8.0.0

The first official stable release with Babel 7.x support.

• Updated the README for Babel 7 usage
• Use async transform APIs to keep things as flexible as possible
• Pass in Babel's caller option so that Babel knows the name of the caller

v8.0.0-beta.0

• Adds a new peerDep on scoped package @babel/core instead of babel-core which is a breaking change

Changelog

Sourced from gulp-babel's changelog.

8.0.0-beta.2 (2018-03-14)

• [Fix] Fix for sourceMapTarget removal in Babel v7.0.0-beta.41 (#149)

8.0.0-beta.1 (2018-01-26)

• [Fix] Drop dependency on deprecated gulp-util (#137)
• [Chore] Update repository: add CHANGELOG.md, update .gitignore, license year, update dependencies, add lock files, add npm badge, mention gulp-babel@next.

8.0.0-beta.0 (2017-10-30)

• [Breaking change] Make @babel/core a peer dependency

7.0.0 (2017-08-06)

• [Breaking change] Make babel-core a peer dependency

7.0.0-alpha.18 (2017-08-04)

• [Breaking change] Update to babel-core@7.0.0-beta.18 (#112)
• [Chore] Replace usage of ES6 by ES2015
• [Documentation] Update README.md: update samples, fix link to issue tracker

6.1.2 (2016-01-31)

• [Fix] Do not add .js extension to files without extension (#74)

Commits

• 297282c 8.0.0
• 7952cc2 Use the async transform API, add caller and drop dependencies on the beta/rc ...
• 32dee19 Fix typo in readme (#156)
• 0983ecf update install [skip ci]
• 432e8c0 update changelog [skip ci]
• 9d2b52c 8.0.0-beta.2
• d73df72 update deps, testing
• 241905b Fix for sourceMapTarget removal in Babel v7.0.0-beta.41 (#149)
• ba247cc Update CHANGELOG.md (#147)
• 28cc2f3 v8.0.0-beta.1
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by loganfsmyth, a new releaser for gulp-babel since your current version.

Updates jasmine-core from 5.1.2 to 5.5.0

Release notes

Sourced from jasmine-core's releases.

v5.5.0

Please see the release notes.

v5.4.0

Please see the release notes.

v5.3.0

Please see the release notes.

v5.2.0

Please see the release notes.

Commits

• 483d4ab Bump version to 5.5.0
• 663dfe5 Updated release instructions
• ce9c752 Added debug logging to flaky test
• d5e7bc9 Optionally enforce uniqueness of spec and suite names
• 744e765 Update copyright date
• 29551ba Prettier
• bd9a3b2 Include property value mismatches in diffs even when there are missing or ext...
• c8c3325 Bump version to 5.4.0
• 84c7e2b Fixed de-duplication of exception messages containing blank lines on Node and...
• dda25bb Removed references to PhantomJS from StackTraceSpec.js
• Additional commits viewable in compare view

Updates karma from 6.4.2 to 6.4.4

Release notes

Sourced from karma's releases.

v6.4.4

6.4.4 (2024-07-29)

v6.4.3

6.4.3 (2024-02-24)

Bug Fixes

• add build commits for patch release (d7f2d69)

Changelog

Sourced from karma's changelog.

6.4.4 (2024-07-29)

6.4.3 (2024-02-24)

Bug Fixes

• add build commits for patch release (d7f2d69)

Commits

• 84f85e7 chore(release): 6.4.4 [skip ci]
• a4d1284 build(deps-dev): bump ws from 6.2.1 to 6.2.3
• d8cf806 chore(release): 6.4.3 [skip ci]
• d7f2d69 fix: add build commits for patch release
• 85a2eeb build(deps-dev): bump decode-uri-component from 0.2.0 to 0.2.2
• 0bffce2 build(deps): updated socket.io version to fix security issues with socket.io-...
• 86667ab build(deps): bump follow-redirects from 1.11.0 to 1.15.4
• 450fdfd docs: Add deprecation notice to Karma README
• See full diff in compare view

Updates karma-babel-preprocessor from 7.0.0 to 8.0.2

Release notes

Sourced from karma-babel-preprocessor's releases.

v8.0.2

• Fix compatibility with @babel/preset-typescript (#53)

v8.0.1

• Pass through original code if Babel has ignored the file (#44)

v8.0.0

Via babel/karma-babel-preprocessor#38

Commits

• edb6960 8.0.2
• 8d2f4c3 Publish only lib/ to npm
• df1d0eb npm audit fix
• a819615 Update devDependencies (#66)
• 8f7609f Bump ansi-regex from 5.0.0 to 5.0.1 (#62)
• adfa81a Bump lodash from 4.17.19 to 4.17.21 (#58)
• d11f76e Bump follow-redirects from 1.14.1 to 1.14.7 (#61)
• f2e5419 Update dev dependencies
• 03465ac Run "npm audit fix"
• 21b17b8 Bump y18n from 4.0.0 to 4.0.1 (#57)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by mattiasbuelens, a new releaser for karma-babel-preprocessor since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions