build(deps): bump the npm_and_yarn group across 1 directory with 17 updates

[dependabot]

Bumps the npm_and_yarn group with 15 updates in the / directory:

Package	From	To
next	12.2.5	14.1.1
@babel/traverse	7.18.11	removed
interchain	1.3.0	1.10.4
axios	0.21.1	1.6.8
@cosmjs/cosmwasm-stargate	0.29.5	0.32.3
@cosmjs/stargate	0.29.5	0.32.3
@cosmos-kit/core	1.3.4	2.10.0
@cosmos-kit/cosmostation	0.15.17	2.8.0
@cosmos-kit/keplr	0.33.18	2.8.0
@cosmos-kit/leap	0.14.16	2.8.0
@cosmos-kit/react	1.3.15	2.12.0
crypto-js	4.1.1	4.2.0
protobufjs	6.11.3	6.11.4
semver	6.3.0	6.3.1
word-wrap	1.2.3	1.2.5

Updates next from 12.2.5 to 14.1.1

Commits

• 5f59ee5 v14.1.1
• f48b90b even more
• 7f789f4 more timeout
• ab71c4c update timeout
• 75f60d9 update trigger release workflow
• 74b3f0f Server Action tests (#62655)
• a6946b6 Backport metadata fixes (#62663)
• 4002f4b Fix draft mode invariant (#62121)
• 7dbf6f8 fix: babel usage with next/image (#61835)
• 3efc842 Fix next/server apit push alias for ESM pkg (#61721)
• Additional commits viewable in compare view

Removes @babel/traverse

Updates interchain from 1.3.0 to 1.10.4

Commits

• See full diff in compare view

Maintainer changes

This version was pushed to npm by zetazz, a new releaser for interchain since your current version.

Updates axios from 0.21.1 to 1.6.8

Release notes

Sourced from axios's releases.

Release v1.6.8

Release notes:

Bug Fixes

• AxiosHeaders: fix AxiosHeaders conversion to an object during config merging (#6243) (2656612)
• import: use named export for EventEmitter; (7320430)
• vulnerability: update follow-redirects to 1.15.6 (#6300) (8786e0f)

Contributors to this release

• Jay
• Dmitriy Mozgovoy
• Mitchell
• Emmanuel
• Lucas Keller
• Aditya Mogili
• Miroslav Petrov

Release v1.6.7

Release notes:

Bug Fixes

• capture async stack only for rejections with native error objects; (#6203) (1a08f90)

Contributors to this release

• Dmitriy Mozgovoy
• zhoulixiang

Release v1.6.6

Release notes:

Bug Fixes

• fixed missed dispatchBeforeRedirect argument (#5778) (a1938ff)
• wrap errors to improve async stack trace (#5987) (123f354)

Contributors to this release

• Ilya Priven
• Zao Soula

Release v1.6.5

Release notes:

Bug Fixes

• ci: refactor notify action as a job of publish action; (#6176) (0736f95)
• dns: fixed lookup error handling; (#6175) (f4f2b03)

Contributors to this release

... (truncated)

Changelog

Sourced from axios's changelog.

1.6.8 (2024-03-15)

Bug Fixes

• AxiosHeaders: fix AxiosHeaders conversion to an object during config merging (#6243) (2656612)
• import: use named export for EventEmitter; (7320430)
• vulnerability: update follow-redirects to 1.15.6 (#6300) (8786e0f)

Contributors to this release

• Jay
• Dmitriy Mozgovoy
• Mitchell
• Emmanuel
• Lucas Keller
• Aditya Mogili
• Miroslav Petrov

1.6.7 (2024-01-25)

Bug Fixes

• capture async stack only for rejections with native error objects; (#6203) (1a08f90)

Contributors to this release

• Dmitriy Mozgovoy
• zhoulixiang

1.6.6 (2024-01-24)

Bug Fixes

• fixed missed dispatchBeforeRedirect argument (#5778) (a1938ff)
• wrap errors to improve async stack trace (#5987) (123f354)

Contributors to this release

• Ilya Priven
• Zao Soula

1.6.5 (2024-01-05)

Bug Fixes

• ci: refactor notify action as a job of publish action; (#6176) (0736f95)

... (truncated)

Commits

• ab3f0f9 chore(release): v1.6.8 (#6303)
• 2656612 fix(AxiosHeaders): fix AxiosHeaders conversion to an object during config mer...
• 7320430 fix(import): use named export for EventEmitter;
• 8786e0f fix(vulnerability): update follow-redirects to 1.15.6 (#6300)
• d844227 chore: update and bump deps (#6238)
• caa0625 docs: update README responseEncoding types (#6194)
• 41c4584 docs: Update README.md to point to current axios version in CDN links (#6196)
• bf6974f chore(ci): add npm tag action; (#6231)
• a52e4d9 chore(release): v1.6.7 (#6204)
• 2b69888 chore: remove unnecessary check (#6186)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by jasonsaayman, a new releaser for axios since your current version.

Updates @cosmjs/cosmwasm-stargate from 0.29.5 to 0.32.3

Changelog

Sourced from @​cosmjs/cosmwasm-stargate's changelog.

[0.32.3] - 2024-03-08

Changed

• @​cosmjs/amino: Add IBC denom support to parseCoins and use the same implementation in all those imports:

  import { parseCoins } from "@cosmjs/proto-signing";
  // equals
  import { parseCoins } from "@cosmjs/stargate";
  // equals
  import { parseCoins } from "@cosmjs/amino";

• @​cosmjs/stargate: Let parseRawLog gracefully handle empty strings to better support Cosmos SDK 0.50 inputs. (#1564)

#1564: cosmos/cosmjs#1564

Fixed

• @​cosmjs/encoding: Avoid using replacement character in doc comment to make external tools happy. (#1570)
• @​cosmjs/cosmwasm-stargate: Use events instead of log parsing to receive information in SigningCosmWasmClient. This is required to support Cosmos SDK 0.50+ where the rawLog field is empty. (#1564)

#1564: cosmos/cosmjs#1564 #1570: cosmos/cosmjs#1570

[0.32.2] - 2023-12-19

Fixed

• @​cosmjs/stargate: Update validation of GasPrice.fromString to allow using IBC denoms as gas denom. (#1522)

#1522: cosmos/cosmjs#1522

Changed

• @​cosmjs/tendermint-rpc: Require protocol to be set in endpoint URLs (https://, http://, wss:// or ws://). Otherwise an error is raised instead of falling back to ws://. (#1527)

#1527: cosmos/cosmjs#1527

[0.32.1] - 2023-12-04

... (truncated)

Commits

• 917bd4c Set version 0.32.3
• f94b230 Merge pull request #1564 from cosmos/wasmd-0.50
• 5cfd592 Add CHANGELOG entry for logs -> events
• 5478dc2 Avoid using logs in example
• add1898 Fix more tests
• 7c68060 Fix wasm events length
• 0d83ef8 Update event handling in tests
• 65d80c2 Remove extra scripts/wasmd/setup.sh
• 874612b Let parseRawLog gracefully handle empty strings
• 188bb1f Restore first send
• Additional commits viewable in compare view

Updates @cosmjs/stargate from 0.29.5 to 0.32.3

Changelog

Sourced from @​cosmjs/stargate's changelog.

[0.32.3] - 2024-03-08

Changed

• @​cosmjs/amino: Add IBC denom support to parseCoins and use the same implementation in all those imports:

  import { parseCoins } from "@cosmjs/proto-signing";
  // equals
  import { parseCoins } from "@cosmjs/stargate";
  // equals
  import { parseCoins } from "@cosmjs/amino";

• @​cosmjs/stargate: Let parseRawLog gracefully handle empty strings to better support Cosmos SDK 0.50 inputs. (#1564)

#1564: cosmos/cosmjs#1564

Fixed

• @​cosmjs/encoding: Avoid using replacement character in doc comment to make external tools happy. (#1570)
• @​cosmjs/cosmwasm-stargate: Use events instead of log parsing to receive information in SigningCosmWasmClient. This is required to support Cosmos SDK 0.50+ where the rawLog field is empty. (#1564)

#1564: cosmos/cosmjs#1564 #1570: cosmos/cosmjs#1570

[0.32.2] - 2023-12-19

Fixed

• @​cosmjs/stargate: Update validation of GasPrice.fromString to allow using IBC denoms as gas denom. (#1522)

#1522: cosmos/cosmjs#1522

Changed

• @​cosmjs/tendermint-rpc: Require protocol to be set in endpoint URLs (https://, http://, wss:// or ws://). Otherwise an error is raised instead of falling back to ws://. (#1527)

#1527: cosmos/cosmjs#1527

[0.32.1] - 2023-12-04

... (truncated)

Commits

• 917bd4c Set version 0.32.3
• f94b230 Merge pull request #1564 from cosmos/wasmd-0.50
• 5cfd592 Add CHANGELOG entry for logs -> events
• 5478dc2 Avoid using logs in example
• add1898 Fix more tests
• 7c68060 Fix wasm events length
• 0d83ef8 Update event handling in tests
• 65d80c2 Remove extra scripts/wasmd/setup.sh
• 874612b Let parseRawLog gracefully handle empty strings
• 188bb1f Restore first send
• Additional commits viewable in compare view

Updates @cosmos-kit/core from 1.3.4 to 2.10.0

Commits

• 3e557c2 chore(release): publish
• 22f3284 Merge pull request #431 from cosmology-tech/noah/cosmiframe-upgrade
• 53f5abe Merge pull request #430 from cosmology-tech/noah/peer-dep-chain-registry-types
• 1ed6f1f upgrade to latest cosmiframe with security features
• f83ecf7 move chain-registry/types to peer deps
• 89e891a chore(release): publish
• 1116571 Merge pull request #429 from cosmology-tech/noah/cosmiframe
• 2ab8742 use @​dao-dao/cosmiframe under the hood for iframe stuff
• cf9a0b0 chore(release): publish
• 7079bc5 chore: yarn lock
• Additional commits viewable in compare view

Updates @cosmos-kit/cosmostation from 0.15.17 to 2.8.0

Commits

• 3e557c2 chore(release): publish
• 22f3284 Merge pull request #431 from cosmology-tech/noah/cosmiframe-upgrade
• 53f5abe Merge pull request #430 from cosmology-tech/noah/peer-dep-chain-registry-types
• 1ed6f1f upgrade to latest cosmiframe with security features
• f83ecf7 move chain-registry/types to peer deps
• 89e891a chore(release): publish
• 1116571 Merge pull request #429 from cosmology-tech/noah/cosmiframe
• 2ab8742 use @​dao-dao/cosmiframe under the hood for iframe stuff
• cf9a0b0 chore(release): publish
• 7079bc5 chore: yarn lock
• Additional commits viewable in compare view

Updates @cosmos-kit/keplr from 0.33.18 to 2.8.0

Commits

• 3e557c2 chore(release): publish
• 22f3284 Merge pull request #431 from cosmology-tech/noah/cosmiframe-upgrade
• 53f5abe Merge pull request #430 from cosmology-tech/noah/peer-dep-chain-registry-types
• 1ed6f1f upgrade to latest cosmiframe with security features
• f83ecf7 move chain-registry/types to peer deps
• 89e891a chore(release): publish
• 1116571 Merge pull request #429 from cosmology-tech/noah/cosmiframe
• 2ab8742 use @​dao-dao/cosmiframe under the hood for iframe stuff
• cf9a0b0 chore(release): publish
• 7079bc5 chore: yarn lock
• Additional commits viewable in compare view

Updates @cosmos-kit/leap from 0.14.16 to 2.8.0

Commits

• 3e557c2 chore(release): publish
• 22f3284 Merge pull request #431 from cosmology-tech/noah/cosmiframe-upgrade
• 53f5abe Merge pull request #430 from cosmology-tech/noah/peer-dep-chain-registry-types
• 1ed6f1f upgrade to latest cosmiframe with security features
• f83ecf7 move chain-registry/types to peer deps
• 89e891a chore(release): publish
• 1116571 Merge pull request #429 from cosmology-tech/noah/cosmiframe
• 2ab8742 use @​dao-dao/cosmiframe under the hood for iframe stuff
• cf9a0b0 chore(release): publish
• 7079bc5 chore: yarn lock
• Additional commits viewable in compare view

Updates @cosmos-kit/react from 1.3.15 to 2.12.0

Commits

• 3e557c2 chore(release): publish
• 22f3284 Merge pull request #431 from cosmology-tech/noah/cosmiframe-upgrade
• 53f5abe Merge pull request #430 from cosmology-tech/noah/peer-dep-chain-registry-types
• 1ed6f1f upgrade to latest cosmiframe with security features
• f83ecf7 move chain-registry/types to peer deps
• 89e891a chore(release): publish
• 1116571 Merge pull request #429 from cosmology-tech/noah/cosmiframe
• 2ab8742 use @​dao-dao/cosmiframe under the hood for iframe stuff
• cf9a0b0 chore(release): publish
• 7079bc5 chore: yarn lock
• Additional commits viewable in compare view

Updates crypto-js from 4.1.1 to 4.2.0

Commits

• 808f499 Merge branch 'release/4.2.0'
• d5af3ae Update release notes.
• 9496e07 Bump version.
• 421dd53 Change default hash algorithm and iteration's for PBKDF2 to prevent weak secu...
• d1f4f4d Update grunt.
• c755289 Discontinued
• 1da3dab Discontinued
• 4dcaa7a Merge pull request #380 from Alanscut/dev
• 762feb2 chore: rename BF to Blowfish
• fb81418 feat: blowfish support
• Additional commits viewable in compare view

Updates follow-redirects from 1.15.2 to 1.15.6

Commits

• 35a517c Release version 1.15.6 of the npm package.
• c4f847f Drop Proxy-Authorization across hosts.
• 8526b4a Use GitHub for disclosure.
• b1677ce Release version 1.15.5 of the npm package.
• d8914f7 Preserve fragment in responseUrl.
• 6585820 Release version 1.15.4 of the npm package.
• 7a6567e Disallow bracketed hostnames.
• 05629af Prefer native URL instead of deprecated url.parse.
• 1cba8e8 Prefer native URL instead of legacy url.resolve.
• 72bc2a4 Simplify _processResponse error handling.
• Additional commits viewable in compare view

Updates postcss from 8.4.14 to 8.4.31

Release notes

Sourced from postcss's releases.

8.4.31

• Fixed \r parsing to fix CVE-2023-44270.

8.4.30

• Improved source map performance (by @​romainmenke).

8.4.29

• Fixed Node#source.offset (by @​idoros).
• Fixed docs (by @​coliff).

8.4.28

• Fixed Root.source.end for better source map (by @​romainmenke).
• Fixed Result.root types when process() has no parser.

8.4.27

• Fixed Container clone methods types.

8.4.26

• Fixed clone methods types.

8.4.25

• Improve stringify performance (by @​romainmenke).
• Fixed docs (by @​vikaskaliramna07).

8.4.24

• Fixed Plugin types.

8.4.23

• Fixed warnings in TypeDoc.

8.4.22

• Fixed TypeScript support with node16 (by @​remcohaszing).

8.4.21

• Fixed Input#error types (by @​hudochenkov).

8.4.20

• Fixed source map generation for childless at-rules like @layer.

8.4.19

• Fixed whitespace preserving after AST transformations (by @​romainmenke).

8.4.18

• Fixed an error on absolute: true with empty sourceContent (by @​KingSora).

8.4.17

• Fixed Node.before() unexpected behavior (by @​romainmenke).
• Added TOC to docs (by @​muddv).

8.4.16

... (truncated)

Changelog

Sourced from postcss's changelog.

8.4.31

• Fixed \r parsing to fix CVE-2023-44270.

8.4.30

• Improved source map performance (by Romain Menke).

8.4.29

• Fixed Node#source.offset (by Ido Rosenthal).
• Fixed docs (by Christian Oliff).

8.4.28

• Fixed Root.source.end for better source map (by Romain Menke).
• Fixed Result.root types when process() has no parser.

8.4.27

• Fixed Container clone methods types.

8.4.26

• Fixed clone methods types.

8.4.25

• Improve stringify performance (by Romain Menke).
• Fixed docs (by @​vikaskaliramna07).

8.4.24

• Fixed Plugin types.

8.4.23

• Fixed warnings in TypeDoc.

8.4.22

• Fixed TypeScript support with node16 (by Remco Haszing).

8.4.21

• Fixed Input#error types (by Aleks Hudochenkov).

8.4.20

• Fixed source map generation for childless at-rules like @layer.

8.4.19

• Fixed whitespace preserving after AST transformations (by Romain Menke).

8.4.18

• Fixed an error on absolute: true with empty sourceContent (by Rene Haas).

8.4.17

• Fixed Node.before() unexpected behavior (by Romain Menke).
• Added TOC to docs (by Mikhail Dedov).

8.4.16

... (truncated)

Commits

• 90208de Release 8.4.31 version
• 58cc860 Fix carrier return parsing
• 4fff8e4 Improve pnpm test output
• cd43ed1 Update dependencies
• caa916b Update dependencies
• 8972f76 Typo
• 11a5286 Typo
• 45c5501 Release 8.4.30 version
• bc3c341 Update linter
• b2be58a Merge pull request #1881 from romainmenke/improve-sourcemap-performance--phil...
• Additional commits viewable in compare view

Updates protobufjs from 6.11.3 to 6.11.4

Commits

• See full diff in compare view

Updates semver from 6.3.0 to 6.3.1

Release notes

Sourced from semver's releases.

v6.3.1

6.3.1 (2023-07-10)

Bug Fixes

• 928e56d #591 better handling of whitespace (#591) (@​lukekarrys, @​joaomoreno, @​nicolo-ribaudo)

Changelog

Sourced from semver's changelog.

6.3.1 (2023-07-10)

Bug Fixes

• 928e56d #591 better handling of whitespace (#591) (@​lukekarrys, @​joaomoreno, @​nicolo-ribaudo)

6.2.0

• Coerce numbers to strings when passed to semver.coerce()
• Add rtl option to coerce from right to left

6.1.3

• Handle X-ranges properly in includePrerelease mode

6.1.2

• Do not throw when testing invalid version strings

6.1.1

• Add options support for semver.coerce()
• Handle undefined version passed to Range.test

6.1.0

• Add semver.compareBuild function
• Support * in semver.intersects

6.0

• Fix intersects logic.

  This is technically a bug fix, but since it is also a change to behavior that may require users updating their code, it is marked as a major version increment.

5.7

• Add minVersion method

5.6

• Move boolean loose param to an options object, with backwards-compatibility protection.
• Add ability to opt out of special prerelease version handling with the includePrerelease option flag.

5.5

... (truncated)

Commits

• 44d27bc chore: release 6.3.1
• 928e56d fix: better handling of whitespace (#591)
• 39f6326 chore: @​npmcli/template-oss@​4.16.0
• See full diff in compare view

Maintainer changes

This version was pushed to npm by lukekarrys, a new releaser for semver since your current version.

Updates word-wrap from 1.2.3 to 1.2.5

Release notes

Sourced from word-wrap's releases.

1.2.5

Changes:

Reverts default value for options.indent to two spaces ' '.

Full Changelog: jonschlinkert/word-wrap@1.2.4...1.2.5

1.2.4

What's Changed

• Remove default indent by @​mohd-akram in jonschlinkert/word-wrap#24
• 🔒fix: CVE 2023 26115 (2) by @​OlafConijn in jonschlinkert/word-wrap#41
• 🔒 fix: CVE-2023-26115 by @​aashutoshrathi in jonschlinkert/word-wrap#33
• chore: publish workflow by @​OlafConijn in jonschlinkert/word-wrap#42

New Contributors

• @​mohd-akram made their first contribution in jonschlinkert/word-wrap#24
• @​OlafConijn made their first contribution in jonschlinkert/word-wrap#41
• @​aashutoshrathi made their first contribution in jonschlinkert/word-wrap#33

Full Changelog: jonschlinkert/word-wrap@1.2.3...1.2.4

Commits

• 207044e 1.2.5
• 9894315 revert default indent
• f64b188 run verb to generate README
• 03ea082 Merge pull request #42 from jonschlinkert/chore/publish-workflow
• 420dce9 Merge pull request #41 from jonschlinkert/fix/CVE-2023-26115-2
• bfa694e Update .github/workflows/publish.yml
• ace0b3c chore: bump version to 1.2.4
• 6fd7275 chore: add publish workflow
• 30d6daf chore: fix test
• 655929c chore: remove package-lock
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
  You can disable automated security fix PRs for this repo from the Security Alerts page.

[coderabbitai]

Important

Auto Review Skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

---

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

Share

• X
• Mastodon
• Reddit
• LinkedIn

Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai generate interesting stats about this repository and render them as a table.
  • @coderabbitai show all the console.log statements in this repository.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (invoked as PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger a review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai help to get help.

Additionally, you can add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.

CodeRabbit Configration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[dependabot]

Superseded by #5.