chore(deps): bump undici from 5.26.4 to 5.28.4 in /dev/coverage-action in the npm_and_yarn group

[dependabot]

Bumps the npm_and_yarn group in /dev/coverage-action with 1 update: undici.

Updates undici from 5.26.4 to 5.28.4

Release notes

Sourced from undici's releases.

v5.28.4

⚠️ Security Release ⚠️

• Fixes GHSA-m4v8-wqvr-p9f7 CVE-2024-30260
• Fixes GHSA-9qxr-qj54-h672 CVE-2024-30261

Full Changelog: nodejs/undici@v5.28.3...v5.28.4

v5.28.3

⚠️ Security Release ⚠️

Fixes:

• CVE-2024-24758 Proxy-Authorization header not cleared on cross-origin redirect in fetch

Full Changelog: nodejs/undici@v5.28.2...v5.28.3

v5.28.2

What's Changed

• fix: remove optional chainning for compatible with Nodejs12 and below by @​bugb in nodejs/undici#2470
• fix: remove node: prefix by @​tsctx in nodejs/undici#2471
• perf: avoid Headers initialization by @​tsctx in nodejs/undici#2468
• fix: handle SharedArrayBuffer correctly by @​tsctx in nodejs/undici#2466
• fix: Add null type to signal in RequestInit by @​gebsh in nodejs/undici#2455
• fix: correctly handle data URL with hashes. by @​tsctx in nodejs/undici#2475
• fix: check response for timinginfo allow flag by @​ToshB in nodejs/undici#2477
• Make call to onBodySent conditional in RetryHandler by @​MzUgM in nodejs/undici#2478
• refactor: better integrity check by @​tsctx in nodejs/undici#2462
• fix: Added support for inline URL username:password proxy auth by @​matt-way in nodejs/undici#2473
• build(deps-dev): bump jsdom from 22.1.0 to 23.0.0 by @​dependabot in nodejs/undici#2472
• build(deps-dev): bump sinon from 16.1.3 to 17.0.1 by @​dependabot in nodejs/undici#2405
• build(deps): bump ossf/scorecard-action from 2.2.0 to 2.3.1 by @​dependabot in nodejs/undici#2396
• build(deps): bump actions/setup-node from 3.8.1 to 4.0.0 by @​dependabot in nodejs/undici#2395
• build(deps): bump step-security/harden-runner from 2.5.0 to 2.6.0 by @​dependabot in nodejs/undici#2392
• build(deps-dev): bump formdata-node from 4.4.1 to 6.0.3 by @​dependabot in nodejs/undici#2389
• build(deps): bump actions/upload-artifact from 3.1.2 to 3.1.3 by @​dependabot in nodejs/undici#2302

New Contributors

• @​bugb made their first contribution in nodejs/undici#2470
• @​gebsh made their first contribution in nodejs/undici#2455
• @​ToshB made their first contribution in nodejs/undici#2477
• @​MzUgM made their first contribution in nodejs/undici#2478
• @​matt-way made their first contribution in nodejs/undici#2473

Full Changelog: nodejs/undici@v5.28.1...v5.28.2

v5.28.1

What's Changed

• perf: Improve normalizeMethod by @​tsctx in nodejs/undici#2456
• fix: dispatch error handling by @​ronag in nodejs/undici#2459

... (truncated)

Commits

• fb98306 Bumped v5.28.4
• 2b39440 Merge pull request from GHSA-9qxr-qj54-h672
• 64e3402 Merge pull request from GHSA-m4v8-wqvr-p9f7
• 723c4e7 Revert "build(deps-dev): bump formdata-node from 4.4.1 to 6.0.3 (#2389)"
• 0e9d54b skip failing test due to Node.js changes
• e71cb4c Bumped v5.28.3
• 20c65b8 Fix tests for Node.js v20.11.0 (#2618)
• 8ec52cd Fix tests for Node.js v21 (#2609)
• d3aa574 Merge pull request from GHSA-3787-6prv-h9w3
• 9a14e5f Bumped v5.28.2
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
  You can disable automated security fix PRs for this repo from the Security Alerts page.

[changeset-bot]

⚠️ No Changeset found

Latest commit: bfde103

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/has@1.0.3	None	0	2.77 kB	ljharb
npm/highcharts@11.4.0	None	0	79.7 MB	torsteinhonsi
npm/highlight.js@11.9.0	None	0	5.29 MB	highlightjs_bot
npm/html-escaper@2.0.2	None	0	13.1 kB	webreflection
npm/http-errors@2.0.0	None	0	18.8 kB	dougwilson
npm/ical.js@1.5.0	None	0	669 kB	kewisch
npm/immutable@4.0.0	None	0	664 kB	leebyron
npm/infer-owner@1.0.4	filesystem	0	4.29 kB	isaacs
npm/internmap@2.0.3	None	0	10.5 kB	mbostock
npm/ip@1.1.8	None	0	13.6 kB	indutny
npm/is-binary-path@2.1.0	None	0	3.08 kB	sindresorhus
npm/is-expression@4.0.0	None	0	6.12 kB	forbeslindesay
npm/isbinaryfile@4.0.10	filesystem	0	12.5 kB	gjtorikian
npm/istanbul-lib-coverage@3.2.0	None	0	29.3 kB	oss-bot
npm/istanbul-lib-report@3.0.1	filesystem	0	37.6 kB	oss-bot
npm/istanbul-reports@3.1.6	None	0	294 kB	oss-bot
npm/jquery@3.7.1	None	0	1.25 MB	timmywil
npm/js-cookie@3.0.5	None	0	26.2 kB	carhartl
npm/json5@2.2.1	None	0	229 kB	jordanbtucker
npm/list.js@2.3.1	None	0	943 kB	javve
npm/lmdb@2.8.5	environment, filesystem, unsafe	0	2.4 MB	kriszyp
npm/magic-string@0.30.7	None	0	447 kB	antfu
npm/make-dir@4.0.0	filesystem	0	9.91 kB	sindresorhus
npm/make-fetch-happen@10.1.5	environment, network	0	59 kB	nlf
npm/mime@1.6.0	environment, filesystem	0	51.7 kB	broofa
npm/minipass-fetch@2.1.0	environment, network	0	46.2 kB	nlf
npm/minipass@3.1.6	None	0	37.8 kB	isaacs
npm/moment-timezone@0.5.45	None	0	3.01 MB	gilmoreorless
npm/moment@2.30.1	None	0	4.35 MB	ichernev
npm/msgpackr-extract@3.0.2	None	0	15.3 kB	kriszyp
npm/msgpackr@1.9.9	environment, eval, unsafe	0	1.85 MB	kriszyp
npm/muggle-string@0.4.1	None	0	44.7 kB	johnsoncodehk
npm/murmurhash-js@1.0.0	None	0	6.34 kB	mikolalysenko
npm/naive-ui@2.38.1	environment	0	32.1 MB	07akioni
npm/nanoid@3.3.7	None	0	24.4 kB	ai
npm/node-addon-api@3.2.1	None	0	420 kB	nicknaso
npm/node-gyp-build-optional-packages@5.1.1	environment, filesystem, unsafe	0	13.9 kB	kriszyp
npm/node-gyp-build@4.4.0	environment, filesystem	0	12.8 kB	mafintosh
npm/node-gyp@9.0.0	environment, shell	0	1.98 MB	rvagg
npm/nopt@5.0.0	environment	0	25.8 kB	isaacs
npm/normalize-path@3.0.0	None	0	9.22 kB	jonschlinkert
npm/nullthrows@1.1.1	None	0	2.84 kB	zertosh
npm/object-assign@4.1.1	None	0	5.49 kB	sindresorhus
npm/on-finished@2.4.1	unsafe	0	13.7 kB	dougwilson
npm/ordered-binary@1.4.1	None	0	52.3 kB	kriszyp
npm/picocolors@1.0.0	environment	0	5.66 kB	alexeyraspopov
npm/pinia-plugin-persist@1.0.0	None	0	5.98 kB	seb.l.
npm/pinia@2.1.7	environment	0	379 kB	posva
npm/postcss@8.4.35	environment, filesystem	0	198 kB	ai
npm/preact@10.12.1	None	0	1.19 MB	marvinhagemeister
npm/pug-error@2.0.0	None	0	4.59 kB	pug-bot
npm/pug-lexer@5.0.1	None	0	59.3 kB	pug-bot
npm/pug-parser@6.0.0	None	0	35.8 kB	pug-bot
npm/range-parser@1.2.1	None	0	8.46 kB	dougwilson
npm/readdirp@3.6.0	filesystem	0	20.5 kB	paulmillr
npm/regenerator-runtime@0.14.0	None	0	27.8 kB	benjamn
npm/robust-predicates@3.0.1	None	0	298 kB	mourner
npm/rw@1.3.3	filesystem	0	24.2 kB	mbostock
npm/sass@1.72.0	filesystem, unsafe	0	5.17 MB	sassbot
npm/seemly@0.3.8	None	0	70.7 kB	07akioni
npm/select2-bootstrap-5-theme@1.3.0	None	0	169 kB	apalfrey
npm/select2@4.1.0-rc.0	None	0	846 kB	kevin-brown
npm/send@0.18.0	filesystem, network	0	50.1 kB	dougwilson
npm/setprototypeof@1.2.0	None	0	4.03 kB	wesleytodd
npm/shepherd.js@11.2.0	None	0	2.89 MB	rwwagner90
npm/socks-proxy-agent@6.2.0	network	0	27.4 kB	kikobeats
npm/socks@2.6.2	network	0	152 kB	joshglazebrook
npm/sortablejs@1.15.2	None	0	556 kB	owenm
npm/source-map-js@1.0.2	None	0	148 kB	7rulnik
npm/ssri@9.0.1	None	0	37.5 kB	nlf
npm/statuses@2.0.1	None	0	12.1 kB	dougwilson
npm/string-natural-compare@2.0.3	None	0	9.31 kB	nwoltman
npm/tar@6.1.11	environment, filesystem	0	161 kB	isaacs
npm/test-exclude@6.0.0	None	0	23.6 kB	coreyfarrell
npm/toidentifier@1.0.1	None	0	4.68 kB	dougwilson
npm/token-stream@1.0.0	None	0	5.53 kB	timothygu
npm/treemate@0.3.11	environment	0	93.1 kB	07akioni
npm/unique-filename@1.1.1	None	0	41.4 kB	iarna
npm/unique-slug@2.0.2	None	0	2.68 kB	zkat
npm/utility-types@3.10.0	None	0	62.2 kB	piotrwitek
npm/v8-to-istanbul@9.0.1	filesystem, unsafe	0	44.6 kB	oss-bot
npm/vanillajs-datepicker@1.3.4	None	0	1.63 MB	mymth
npm/vdirs@0.1.8	None	0	18.4 kB	07akioni
npm/volar-service-html@0.0.34	None	0	22.1 kB	johnsoncodehk
npm/volar-service-pug@0.0.34	None	0	38.3 kB	johnsoncodehk
npm/vooks@0.2.12	environment	0	52.8 kB	07akioni
npm/vscode-html-languageservice@5.1.2	None	0	1.58 MB	vscode-bot
npm/vscode-jsonrpc@8.2.0	environment, network	0	208 kB	vscode-bot
npm/vscode-languageserver-protocol@3.17.5	None	0	365 kB	vscode-bot
npm/vscode-languageserver-textdocument@1.0.11	None	0	39.4 kB	vscode-bot
npm/vscode-languageserver-types@3.17.5	None	0	377 kB	vscode-bot
npm/vscode-uri@3.0.8	None	0	204 kB	vscode-bot
npm/vue-demi@0.14.5	filesystem	0	27 kB	antfu
npm/vue-router@4.3.0	environment	0	796 kB	posva
npm/vue@3.4.21	environment, eval	0	2.19 MB	yyx990803
npm/vueuc@0.4.58	None	0	228 kB	07akioni
npm/weak-lru-cache@1.2.2	None	0	28.2 kB	kriszyp
npm/zxcvbn@4.4.2	None	0	3.46 MB	wheels

🚮 Removed packages: npm/@babel/code-frame@7.16.7, npm/@babel/helper-validator-identifier@7.16.7, npm/@babel/highlight@7.17.12, npm/@babel/types@7.18.4, npm/@esbuild/android-arm64@0.18.20, npm/@esbuild/android-arm@0.18.20, npm/@esbuild/android-x64@0.18.20, npm/@esbuild/darwin-arm64@0.18.20, npm/@esbuild/darwin-x64@0.18.20, npm/@esbuild/freebsd-arm64@0.18.20, npm/@esbuild/freebsd-x64@0.18.20, npm/@esbuild/linux-arm64@0.18.20, npm/@esbuild/linux-arm@0.18.20, npm/@esbuild/linux-ia32@0.18.20, npm/@esbuild/linux-loong64@0.18.20, npm/@esbuild/linux-mips64el@0.18.20, npm/@esbuild/linux-ppc64@0.18.20, npm/@esbuild/linux-riscv64@0.18.20, npm/@esbuild/linux-s390x@0.18.20, npm/@esbuild/linux-x64@0.18.20, npm/@esbuild/netbsd-x64@0.18.20, npm/@esbuild/openbsd-x64@0.18.20, npm/@esbuild/sunos-x64@0.18.20, npm/@esbuild/win32-arm64@0.18.20, npm/@esbuild/win32-ia32@0.18.20, npm/@esbuild/win32-x64@0.18.20, npm/@html-validate/stylish@4.1.0, npm/@jridgewell/resolve-uri@3.1.0, npm/@parcel/bundler-default@2.12.0, npm/@parcel/compressor-raw@2.12.0, npm/@parcel/config-default@2.12.0, npm/@parcel/core@2.12.0, npm/@parcel/graph@3.2.0, npm/@parcel/namer-default@2.12.0, npm/@parcel/optimizer-css@2.12.0, npm/@parcel/optimizer-htmlnano@2.12.0, npm/@parcel/optimizer-image@2.12.0, npm/@parcel/optimizer-svgo@2.12.0, npm/@parcel/optimizer-swc@2.12.0, npm/@parcel/packager-css@2.12.0, npm/@parcel/packager-html@2.12.0, npm/@parcel/packager-js@2.12.0, npm/@parcel/packager-raw@2.12.0, npm/@parcel/packager-svg@2.12.0, npm/@parcel/packager-wasm@2.12.0, npm/@parcel/reporter-cli@2.12.0, npm/@parcel/reporter-dev-server@2.12.0, npm/@parcel/reporter-tracer@2.12.0, npm/@parcel/resolver-default@2.12.0, npm/@parcel/runtime-browser-hmr@2.12.0, npm/@parcel/runtime-js@2.12.0, npm/@parcel/runtime-react-refresh@2.12.0, npm/@parcel/runtime-service-worker@2.12.0, npm/@parcel/transformer-babel@2.12.0, npm/@parcel/transformer-css@2.12.0, npm/@parcel/transformer-html@2.12.0, npm/@parcel/transformer-image@2.12.0, npm/@parcel/transformer-js@2.12.0, npm/@parcel/transformer-json@2.12.0, npm/@parcel/transformer-postcss@2.12.0, npm/@parcel/transformer-posthtml@2.12.0, npm/@parcel/transformer-raw@2.12.0, npm/@parcel/transformer-react-refresh-wrap@2.12.0, npm/@parcel/transformer-svg@2.12.0, npm/@sidvind/better-ajv-errors@2.1.3, npm/@swc/helpers@0.5.1, npm/@trysound/sax@0.2.0, npm/@types/istanbul-lib-coverage@2.0.4, npm/@types/parse-json@4.0.0, npm/abortcontroller-polyfill@1.7.3, npm/asap@2.0.6, npm/assert-never@1.2.1, npm/babel-walk@3.0.0-canary-5, npm/base-x@3.0.9, npm/boolbase@1.0.0, npm/browserslist@4.20.3, npm/clone@2.1.2, npm/constantinople@4.0.1, npm/convert-source-map@1.8.0, npm/cosmiconfig@7.0.1, npm/css-select@4.3.0, npm/css-tree@1.1.3, npm/css-what@6.1.0, npm/cssesc@3.0.0, npm/csso@4.2.0, npm/define-properties@1.2.0, npm/doctypes@1.1.0, npm/dom-serializer@1.4.1, npm/domelementtype@2.3.0, npm/domhandler@4.3.1, npm/domutils@2.8.0, npm/dotenv-expand@5.1.0, npm/dotenv@7.0.0, npm/electron-to-chromium@1.4.137, npm/error-ex@1.3.2, npm/es-set-tostringtag@2.0.1, npm/es-shim-unscopables@1.0.0, npm/esbuild@0.18.20, npm/eslint-plugin-cypress@2.15.1, npm/eslint-plugin-vue@9.24.0, npm/eslint-visitor-keys@3.3.0, npm/flatted@3.2.5, npm/get-port@4.2.0

View full report↗︎