Skip to content

Bump the npm-dependencies group with 4 updates#258

Open
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/npm-dependencies-6a63b2e84f
Open

Bump the npm-dependencies group with 4 updates#258
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/npm-dependencies-6a63b2e84f

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 13, 2026
edited
Loading

Bumps the npm-dependencies group with 4 updates: flexsearch, jsdom, less and uglify-js.

Updates flexsearch from 0.7.21 to 0.8.212

Release notes

Sourced from flexsearch's releases.

v0.8.2

  • Config-Serialized Query Caches, Improved caching strategy for Document indexes and Resolver
  • Resolver Async Processing Workflow (including Queuing)
  • Extended Resolver Support: Worker, Persistent, Cache
  • Extended Result Highlighting: Boundaries, Ellipsis, Alignment
  • Improved TypeScript Typings
  • Improved Stemmer Handling
  • Improved Result Highlighting
  • Use multi-language charset normalization as the default Encoder
  • Simplified charset support for multi-language content
  • Charset renamed LatinExact => Exact, LatinDefault => Default and LatinSimple => Normalize, these are universal charset presets for any languages
  • Charset ArabicDefault and CyrillicDefault was removed, they are fully covered by the default universal charset presets
  • Charset Charset.CjkDefault was renamed to Charset.CJK

v0.8.1

  • Resolver Support for Documents
  • Asynchronous Runtime Balancer, new option priority
  • Export/Import Worker Indexes + Document Worker, new extern config options export and import
  • Improved interoperability of the different build packages, including source folder
  • Support custom filter function for encoder (stop-word filter)

v0.8.0

  • Persistent indexes support for: IndexedDB (Browser), Redis, SQLite, Postgres, MongoDB, Clickhouse
  • Enhanced language customization via the new Encoder class
  • Result Highlighting
  • Query performance achieve results up to 4.5 times faster compared to the previous generation v0.7.x by also improving the quality of results
  • Enhanced support for larger indexes or larger result sets
  • Improved offset and limit processing achieve up to 100 times faster traversal performance through large datasets
  • Support for larger In-Memory index with extended key size (the defaults maximum keystore limit is: 2^24)
  • Greatly enhanced performance of the whole text encoding pipeline
  • Improved indexing of numeric content (Triplets)
  • Intermediate result sets and Resolver
  • Basic Resolver: and, or, xor, not, limit, offset, boost, resolve
  • Improved charset collection
  • New charset preset soundex which further reduces memory consumption by also increasing "fuzziness"
  • Performance gain when polling tasks to the index by using "Event-Loop-Caches"
  • Up to 100 times faster deletion/replacement when not using the additional "fastupdate" register
  • Regex Pre-Compilation (transforms hundreds of regex rules into just a few)
  • Extended support for multiple tags (DocumentIndex)
  • Custom Fields ("Virtual Fields")
  • Custom Filter
  • Custom Score Function
  • Added French language preset (stop-word filter, stemmer)
  • Enhanced Worker Support
  • Export / Import index in chunks
  • Improved Build System + Bundler (Supported: CommonJS, ESM, Global Namespace), also the import of language packs are now supported for Node.js
  • Full covering index.d.ts type definitions
  • Fast-Boot Serialization optimized for Server-Side-Rendering (PHP, Python, Ruby, Rust, Java, Go, Node.js, ...)

v0.7.31

... (truncated)

Changelog

Sourced from flexsearch's changelog.

Changelog

Current Version

  • Calling index.clear() on a persistent Index does not stack to the task queue by default (which executes on commit), instead it will execute immediately and return a Promise
  • Added new tokenizer tolerant, inherits from strict but also matches simple typos like missing letters and swapped letters
  • Improved Redis Cleanup
  • Resolver: Support Result Highlighting

v0.8.2

  • Config-Serialized Query Caches, Improved caching strategy for Document indexes and Resolver
  • Resolver Async Processing Workflow (including Queuing)
  • Extended Resolver Support: Worker, Persistent, Cache
  • Extended Result Highlighting: Boundaries, Ellipsis, Alignment
  • Improved TypeScript Typings
  • Improved Stemmer Handling
  • Improved Result Highlighting
  • Use multi-language charset normalization as the default Encoder
  • Simplified charset support for multi-language content
  • Charset renamed LatinExact => Exact, LatinDefault => Default and LatinSimple => Normalize, these are universal charset presets for any languages
  • Charset ArabicDefault and CyrillicDefault was removed, they are fully covered by the default universal charset presets
  • Charset Charset.CjkDefault was renamed to Charset.CJK

v0.8.1

  • Resolver Support for Documents
  • Asynchronous Runtime Balancer, new option priority
  • Export/Import Worker Indexes + Document Worker, new extern config options export and import
  • Improved interoperability of the different build packages, including source folder
  • Support custom filter function for encoder (stop-word filter)

v0.8.0

  • Persistent indexes support for: IndexedDB (Browser), Redis, SQLite, Postgres, MongoDB, Clickhouse
  • Enhanced language customization via the new Encoder class
  • Result Highlighting
  • Query performance achieve results up to 4.5 times faster compared to the previous generation v0.7.x by also improving the quality of results
  • Enhanced support for larger indexes or larger result sets
  • Improved offset and limit processing achieve up to 100 times faster traversal performance through large datasets
  • Support for larger In-Memory index with extended key size (the defaults maximum keystore limit is: 2^24)
  • Greatly enhanced performance of the whole text encoding pipeline
  • Improved indexing of numeric content (Triplets)
  • Intermediate result sets and Resolver
  • Basic Resolver: and, or, xor, not, limit, offset, boost, resolve
  • Improved charset collection
  • New charset preset soundex which further reduces memory consumption by also increasing "fuzziness"
  • Performance gain when polling tasks to the index by using "Event-Loop-Caches"
  • Up to 100 times faster deletion/replacement when not using the additional "fastupdate" register
  • Regex Pre-Compilation (transforms hundreds of regex rules into just a few)

... (truncated)

Commits

Updates jsdom from 19.0.0 to 29.1.1

Release notes

Sourced from jsdom's releases.

v29.1.1

  • Fixed 'border-radius' computed style serialization. (@​asamuzaK)
  • Fixed computed style computation when using 'background-origin' and 'background-clip' CSS properties. (@​asamuzaK)
  • Significantly optimized initial calls to getComputedStyle(), before the cache warms up. (@​asamuzaK)

v29.1.0

  • Added basic support for the ratio CSS type. (@​asamuzaK)
  • Fixed getComputedStyle() sometimes returning outdated results after CSS was modified. (@​asamuzaK)

v29.0.2

  • Significantly improved and sped up getComputedStyle(). Computed value rules are now applied across a broader set of properties, and include fixes related to inheritance, defaulting keywords, custom properties, and color-related values such as currentcolor and system colors. (@​asamuzaK)
  • Fixed CSS 'background' and 'border' shorthand parsing. (@​asamuzaK)

v29.0.1

  • Fixed CSS parsing of 'border', 'background', and their sub-shorthands containing keywords or var(). (@​asamuzaK)
  • Fixed getComputedStyle() to return a more functional CSSStyleDeclaration object, including indexed access support, which regressed in v29.0.0.

v29.0.0

Breaking changes:

  • Node.js v22.13.0+ is now the minimum supported v22 version (was v22.12.0+).

Other changes:

  • Overhauled the CSSOM implementation, replacing the @acemir/cssom and cssstyle dependencies with fresh internal implementations built on webidl2js wrappers and the css-tree parser. Serialization, parsing, and API behavior is improved in various ways, especially around edge cases.
  • Added CSSCounterStyleRule and CSSNamespaceRule to jsdom Windows.
  • Added cssMediaRule.matches and cssSupportsRule.matches getters.
  • Added proper media query parsing in MediaList, using css-tree instead of naive comma-splitting. Invalid queries become "not all" per spec.
  • Added cssKeyframeRule.keyText getter/setter validation.
  • Added cssStyleRule.selectorText setter validation: invalid selectors are now rejected.
  • Added styleSheet.ownerNode, styleSheet.href, and styleSheet.title.
  • Added bad port blocking per the fetch specification, preventing fetches to commonly-abused ports.
  • Improved Document initialization performance by lazily initializing the CSS selector engine, avoiding ~0.5 ms of overhead per Document. (@​thypon)
  • Fixed a memory leak when stylesheets were removed from the document.
  • Fixed CSSStyleDeclaration modifications to properly trigger custom element reactions.
  • Fixed nested @media rule parsing.
  • Fixed CSSStyleSheet's "disallow modification" flag not being checked in all mutation methods.
  • Fixed XMLHttpRequest's response getter returning parsed JSON during the LOADING state instead of null.
  • Fixed getComputedStyle() crashing in XHTML documents when stylesheets contained at-rules such as @page or @font-face.
  • Fixed a potential hang in synchronous XMLHttpRequest caused by a race condition with the worker thread's idle timeout.

v28.1.0

  • Added blob.text(), blob.arrayBuffer(), and blob.bytes() methods.
  • Improved getComputedStyle() to account for CSS specificity when multiple rules apply. (@​asamuzaK)
  • Improved synchronous XMLHttpRequest performance by using a persistent worker thread, avoiding ~400ms of setup overhead on every synchronous request after the first one.
  • Improved performance of node.getRootNode(), node.isConnected, and event.dispatchEvent() by caching the root node of document-connected trees.
  • Fixed getComputedStyle() to correctly handle !important priority. (@​asamuzaK)
  • Fixed document.getElementById() to return the first element in tree order when multiple elements share the same ID.
  • Fixed <svg> elements to no longer incorrectly proxy event handlers to the Window.
  • Fixed FileReader event timing and fileReader.result state to more closely follow the spec.

... (truncated)

Commits
  • 9b9ea7e 29.1.1
  • 07efb78 Optimize computed style comparison
  • 5f66329 Fix background-origin/background-clip in background shorthand
  • ad8af77 Fix border shorthand handling
  • 5a3e88e 29.1.0
  • 73db204 Update dependencies and dev dependencies
  • a7168a5 Support ratio CSS unit type
  • 15346e0 Fix style cache invalidation
  • 2a1e2cd 29.0.2
  • 4097d66 Resolve computed CSS values lazily in CSSStyleDeclaration
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for jsdom since your current version.

Install script changes

This version modifies prepare script that runs during installation. Review the package contents before updating.


Updates less from 4.1.3 to 4.6.4

Release notes

Sourced from less's releases.

Release v4.6.3

Changes

See CHANGELOG.md for details.

Installation

npm install less@4.6.3

Release v4.6.0

Changes

See CHANGELOG.md for details.

Installation

npm install less@4.6.0

v4.5.1

  • Internal test refactor (#4378).
  • Initial auto-publishing implementation (#4390 and #4391)

v4.4.2

v4.4.1

v4.4.0

v4.3.0

#4319 Add deprecation warnings to Less output during parsing and new quiet flag (@​matthew-dean) #4320 Update README.md to remove Lerna reference (@​matthew-dean) #4322 Revise Playwright install method for CI stability (@​puckowski) #4333 Add support for starting-style at rule. (@​puckowski)

v4.2.2

less/less.js#4290 Fix less/less.js#4268 nested pseudo-selector parsing (@​puckowski) less/less.js#4291 Enhance Less.js test environment setup (#4291) (@​iChenLei) less/less.js#4295 Fix less/less.js#4252 container queries created via mixin evaluating variables incorrectly (@​puckowski)

... (truncated)

Changelog

Sourced from less's changelog.

Change Log

v4.6.0 (2026-03-09)

Bug Fixes

Features & Improvements

Deprecation Warnings

Chores

v4.5.1 (2025-12-28)

Automated patch release — no user-facing changes.

v4.4.2 (2025-08-27)

v4.4.1 (2025-07-25)

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for less since your current version.


Updates uglify-js from 3.17.4 to 3.19.3

Release notes

Sourced from uglify-js's releases.

v3.19.3

Bug Fixes

  • assignment operator (abefd944eaebfd20d7f01e75353de2c5260bd586, cf87290819d87bfec842503ae655eafeffd5bdb6)
  • function call (4a92cdc4807a01bcaba9003a45a0e13c46653a8f)
  • function literal (303417cb64f145b52d8162ad2ffb8a48c56aac38)
  • property accessor (f34fbb2c36b2fd1cfe38aa12d103cdeb3916c73d, 23f98ba3e19b30bfd47de7c1a4740f8aa442b333, abefd944eaebfd20d7f01e75353de2c5260bd586, cf87290819d87bfec842503ae655eafeffd5bdb6)

v3.19.2

Features

  • improve compression of logical expressions (c7152b5e6618089c359d8f6c944572997271cfc9, cd0a8ec757156737a71be697b0cdd4a95a2dd6ab)
  • simplify collapsed assignment expressions (76803d6b45421699e201fbc4ee3173af1b1033df)
  • convert function literals to arrow functions (22550741b913e3c9fcdc3cf39395a8020c77c5f5)
  • support ascii_only on template literals (4661b3472e228c056f273977319009d6103feaff)
  • improve generation of Unicode escape sequences (80ebacbf51ccf449d47f5ce5a41fffeae4f9c454)

Bug Fixes

  • destructuring syntax (d82b7de5e885da712b43703810a521f22820ee26)
  • if statement (69f4e3a419fc1328eacadf89cbbece0497ad8957)
  • logical operator (69f4e3a419fc1328eacadf89cbbece0497ad8957)
  • optional chaining operator (15c8edb7564a0ab825fce19517f96e8d377a01a8, 8bbbc5178ebee10eb9fa69a706b29f40cc2aa3b9, 69f4e3a419fc1328eacadf89cbbece0497ad8957)
  • property accessor (e9cf8deb3352935328671df92ae21bf7b1e8a3b0)
  • switch statement (69f4e3a419fc1328eacadf89cbbece0497ad8957)
  • try statement (4bf9a4f0954c3fb2b2b2ab9d2def03cebbf0ac7b, 69f4e3a419fc1328eacadf89cbbece0497ad8957)

v3.19.1

Features

  • simplify nullish comparison of complex expressions (7a4fb85404f44bbf2e4db5892eb32b698bc53b6e)

Bug Fixes

  • if statement (fac0aa2b8aca8605835e604afe8b39903cc89b75)
  • switch statement (12475763a60ef92fed1cd625bbb0064c347cc84c, fac0aa2b8aca8605835e604afe8b39903cc89b75)

v3.19.0

Features

  • eliminate side-effect-free property access (9c80456634550045b51e921e59deb61e4e1dcab7, 95d3ede664598916e6dced8a5e0f5003efd3c77a, 205a1d1f19cfc128018cfd822c3332e6ee0a831f, 124c4d3fe364c825488528f9d90b68cb3b48178d)
  • improve hoist_vars efficiency (ce8ef52e2bcad2747b803faad68ab9c78cadf4d9)
  • improve compression around built-in function (8c5a899986e7f66cadd76bfcbd7c017e03508d36)
  • improve deconstruction of singular destructuring assignment (8c5a899986e7f66cadd76bfcbd7c017e03508d36)

Bug Fixes

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the npm-dependencies group with 4 updates
27e80ad 
Bumps the npm-dependencies group with 4 updates: [flexsearch](https://github.com/nextapps-de/flexsearch), [jsdom](https://github.com/jsdom/jsdom), [less](https://github.com/less/less.js) and [uglify-js](https://github.com/mishoo/UglifyJS).


Updates `flexsearch` from 0.7.21 to 0.8.212
- [Release notes](https://github.com/nextapps-de/flexsearch/releases)
- [Changelog](https://github.com/nextapps-de/flexsearch/blob/master/CHANGELOG.md)
- [Commits](https://github.com/nextapps-de/flexsearch/commits)

Updates `jsdom` from 19.0.0 to 29.1.1
- [Release notes](https://github.com/jsdom/jsdom/releases)
- [Commits](jsdom/jsdom@v19.0.0...v29.1.1)

Updates `less` from 4.1.3 to 4.6.4
- [Release notes](https://github.com/less/less.js/releases)
- [Changelog](https://github.com/less/less.js/blob/master/CHANGELOG.md)
- [Commits](https://github.com/less/less.js/commits)

Updates `uglify-js` from 3.17.4 to 3.19.3
- [Release notes](https://github.com/mishoo/UglifyJS/releases)
- [Commits](mishoo/UglifyJS@v3.17.4...v3.19.3)

---
updated-dependencies:
- dependency-name: flexsearch
  dependency-version: 0.8.212
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: jsdom
  dependency-version: 29.1.1
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: npm-dependencies
- dependency-name: less
  dependency-version: 4.6.4
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: uglify-js
  dependency-version: 3.19.3
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels May 13, 2026
@cf-bottom
Copy link
Copy Markdown

cf-bottom commented May 14, 2026

Thank you for submitting a PR! Maybe @larsewi can review this?

@larsewi larsewi requested a review from aleksandrychev May 14, 2026 11:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@aleksandrychev aleksandrychev Awaiting requested review from aleksandrychev

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@cf-bottom