fix(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence	Type	Update
@openapitools/openapi-generator-cli	2.11.0 -> 2.18.4					devDependencies	minor
@types/jest (source)	29.5.12 -> 29.5.14					devDependencies	patch
@types/node (source)	20.11.25 -> 20.17.29					devDependencies	minor
commitizen	4.3.0 -> 4.3.1					devDependencies	patch
husky	9.0.11 -> 9.1.7					devDependencies	minor
node (source)	20.11.1 -> 20.19.0					volta	minor
npm-run-all2	5.0.0 -> 5.0.2					devDependencies	patch
rimraf	5.0.5 -> 5.0.10					devDependencies	patch
ts-jest (source)	29.1.2 -> 29.3.1					devDependencies	minor
tslib (source)	2.6.2 -> 2.8.1					dependencies	minor
typescript (source)	5.4.2 -> 5.8.2					devDependencies	minor

---

Release Notes

OpenAPITools/openapi-generator-cli (@​openapitools/openapi-generator-cli)

v2.18.4

Compare Source

Bug Fixes

• deps: update dependency fs-extra to v11 (#​903) (11a2df5)

v2.18.3

Compare Source

Bug Fixes

• deps: update dependency rxjs to v7.8.2 (#​896) (ec586d4)

v2.18.2

Compare Source

Bug Fixes

• deps: update dependency reflect-metadata to v0.2.2 (#​780) (ed23197)

v2.18.1

Compare Source

Bug Fixes

• deps: update dependency axios to v1.8.3 (#​895) (4766f33)

v2.18.0

Compare Source

Features

• release: trigger a release (#​893) (f8a9d14)

v2.17.1

Compare Source

Bug Fixes

• deps: update axios to 1.8.2 or later to fix CVE-2025-27152 (#​886) (576ac52)

v2.17.0

Compare Source

Features

• release: v7.12.0 release (#​884) (fbcecee)

v2.16.3

Compare Source

Bug Fixes

• deps: update dependency proxy-agent to v6.5.0 (#​876) (9c93387)

v2.16.2

Compare Source

Bug Fixes

• deps: update nest monorepo to v10.4.15 (#​868) (898584a)

v2.16.1

Compare Source

Bug Fixes

• deps: update dependency axios to v1.7.9 (#​867) (02ee586)

v2.16.0

Compare Source

Features

• release: trigger a release (#​866) (b556b3f)

v2.15.4

Compare Source

Bug Fixes

• deps: update dependency @​nestjs/axios to v3.1.3 (#​858) (5f34ed2)

v2.15.3

Compare Source

Bug Fixes

• deps: update dependency tslib to v2.8.1 (#​841) (0357c06)

v2.15.2

Compare Source

Bug Fixes

• deps: update dependency @​nestjs/axios to v3.1.1 (#​843) (9279abb)

v2.15.1

Compare Source

Bug Fixes

• deps: update nest monorepo (#​697) (14c9ba6)

v2.15.0

Compare Source

Features

• release: trigger a release (407e90f)

v2.14.1

Compare Source

Bug Fixes

• http: use proxy agent setup that supports proxy env variables with no_proxy (#​781) (f452cc8), closes OpenAPITools/openapi-generator-cli#762

v2.14.0

Compare Source

Features

• config schema: add openapi-normalizer generator property (#​830) (c91d116)

v2.13.13

Compare Source

Bug Fixes

• update glob package (#​828) (4d88fe2)

v2.13.12

Compare Source

Bug Fixes

• deps: update dependency axios to v1.7.7 (#​817) (f5b3ede)

v2.13.11

Compare Source

Bug Fixes

• deps: update dependency tslib to v2.7.0 (#​810) (d800f75)

v2.13.10

Compare Source

Bug Fixes

• deps: update dependency https-proxy-agent to v7.0.5 (#​800) (e8226d8)

v2.13.9

Compare Source

Bug Fixes

• #​802: better error handling (#​812) (1879a1e), closes #​802 #​802 #​802

v2.13.8

Compare Source

Bug Fixes

• #​802: add fallback to default versions if search returns errors (#​811) (129c002), closes #​802

v2.13.7

Compare Source

Bug Fixes

• deps: update nest dependencies to v10.4.2 (#​801) (fff1d32)

v2.13.6

Compare Source

Bug Fixes

• deps: update dependency @​nestjs/axios to v3.0.3 (#​799) (868d55e)

v2.13.5

Compare Source

Bug Fixes

• deps: update dependency axios to v1.7.4 [security] (#​789) (18abce4)

v2.13.4

Compare Source

Bug Fixes

• deps: update dependency @​nestjs/axios to v3.0.2 (#​765) (37597a2)

v2.13.3

Compare Source

Bug Fixes

• deps: update dependency axios to v1.6.8 (#​766) (5dff424)

v2.13.2

Compare Source

Bug Fixes

• app: configure http with proxy url if present in environment (#​762) (7787f07), closes OpenAPITools/openapi-generator-cli#714

v2.13.1

Compare Source

Reverts

• Revert "fix(deps): update dependency reflect-metadata to v0.2.1 (#​773)" (#​777) (fb01b0b), closes #​773 #​777

v2.13.0

Compare Source

Features

• #​644: add cli option for openapitools.json (#​754) (1d2a1a2), closes #​644

v2.12.1

Compare Source

Bug Fixes

• deps: update dependency reflect-metadata to v0.2.1 (#​773) (f6dcb95)

v2.12.0

Compare Source

Features

• release: trigger a release (ad97182)

commitizen/cz-cli (commitizen)

v4.3.1

Compare Source

4.3.1 (2024-09-27)

Bug Fixes

• Close process after retry commit. Closes #​974 (#​1001) (3ce8dd5)

typicode/husky (husky)

v9.1.7

Compare Source

What's Changed

• fix: add husky label to deprecated warning by @​smackfu in https://github.com/typicode/husky/pull/1538

New Contributors

• @​smackfu made their first contribution in https://github.com/typicode/husky/pull/1538

Full Changelog: typicode/husky@v9.1.6...v9.1.7

v9.1.6

Compare Source

What's Changed

• Fix issue where example pre-commit file is generated incorrectly by @​dexmlee in https://github.com/typicode/husky/pull/1519

New Contributors

• @​OlegKipchatov made their first contribution in https://github.com/typicode/husky/pull/1495
• @​Byron2016 made their first contribution in https://github.com/typicode/husky/pull/1499
• @​dexmlee made their first contribution in https://github.com/typicode/husky/pull/1519

Full Changelog: typicode/husky@v9.1.5...v9.1.6

v9.1.5

Compare Source

What's Changed

• fixes #​1494, support pre-merge-commit hook by @​RainMeoCat in https://github.com/typicode/husky/pull/1497

New Contributors

• @​RainMeoCat made their first contribution in https://github.com/typicode/husky/pull/1497

Full Changelog: typicode/husky@v9.1.4...v9.1.5

v9.1.4

Compare Source

• Improve deprecation notice

v9.1.3

Compare Source

• fix: better handle space in PATH

v9.1.2

Compare Source

Show a message instead of automatically removing deprecated code.

This only concerns projects that still have the following code in their hooks:

- #!/usr/bin/env sh # <- This is deprecated, remove it
- . "$(dirname -- "$0")/_/husky.sh"  # <- This is deprecated, remove it

### Rest of your hook code

Hooks with these lines will fail in v10.0.0

v9.1.1

Compare Source

Super saiyan god dog! It's over 9.0.0!

What's new

You can now run package commands directly, no need for npx or equivalents.
It makes writing hooks more intuitive and is also slightly faster 🐺⚡️

### .husky/pre-commit
- npx jest
+ jest # ~0.2s faster

A new recipe has been added to the docs. Lint staged files without external dependencies (inspired by Prettier docs). Feel free to modify it.

### .husky/pre-commit
prettier $(git diff --cached --name-only --diff-filter=ACMR | sed 's| |\\ |g') --write --ignore-unknown
git update-index --again

For more advanced use cases, see lint-staged.

Fixes

• bunx husky init command
• Workaround for some hooks implementation on Windows

Deprecations

• #!/usr/bin/env sh and . "$(dirname -- "$0")/_/husky.sh" are deprecated. husky command will automatically remove them, no action required.
• If you're having code in ~/.huskyrc please move it to .config/husky/init.sh

Support for these will be removed in v10.

Friendly reminder

If Git hooks don't fit your workflow, you can disable Husky globally. Just add export HUSKY=0 to .config/husky/init.sh.

I've seen some confusion about this on X, so just a heads-up!

Sponsoring

Husky is downloaded over 45M times per month and used by ~1.5M projects. If your company wants to sponsor, you can do so here: GitHub Sponsors.

Have a nice summer ☀️ I'm open to new opportunities/consulting so feel free to drop me a message 😉

v9.1.0

Compare Source

nodejs/node (node)

v20.19.0: 2025-03-13, Version 20.19.0 'Iron' (LTS), @​marco-ippolito

Compare Source

Notable Changes

require(esm) is now enabled by default

Support for loading native ES modules using require() had been available on v20.x under the command line flag --experimental-require-module, and available by default on v22.x and v23.x. In this release, it is now no longer behind a flag on v20.x.

This feature has been tested on v23.x and v22.x, and we are looking for user feedback from v20.x to make more final tweaks before fully stabilizing it. When the Node.js instance encounters a native ES module in require() somewhere outside node_modules for the first time, it will emit an experimental warning unless require() comes from a path that contains node_modules. If there happens to be any regressions caused by this feature, users can report it to the Node.js issue tracker. Meanwhile this feature can also be disabled using --no-experimental-require-module as a workaround.

With this feature enabled, Node.js will no longer throw ERR_REQUIRE_ESM if require() is used to load a ES module. It can, however, throw ERR_REQUIRE_ASYNC_MODULE if the ES module being loaded or its dependencies contain top-level await. When the ES module is loaded successfully by require(), the returned object will either be a ES module namespace object similar to what's returned by import(), or what gets exported as "module.exports" in the ES module.

Users can check process.features.require_module to see whether require(esm) is enabled in the current Node.js instance. For packages, the "module-sync" exports condition can be used as a way to detect require(esm) support in the current Node.js instance and allow both require() and import to load the same native ES module. See the documentation for more details about this feature.

Contributed by Joyee Cheung in #​55085

Module syntax detection is now enabled by default

Module syntax detection (the --experimental-detect-module flag) is now
enabled by default. Use --no-experimental-detect-module to disable it if
needed.

Syntax detection attempts to run ambiguous files as CommonJS, and if the module
fails to parse as CommonJS due to ES module syntax, Node.js tries again and runs
the file as an ES module.
Ambiguous files are those with a .js or no extension, where the nearest parent
package.json has no "type" field (either "type": "module" or
"type": "commonjs").
Syntax detection should have no performance impact on CommonJS modules, but it
incurs a slight performance penalty for ES modules; add "type": "module" to
the nearest parent package.json file to eliminate the performance cost.
A use case unlocked by this feature is the ability to use ES module syntax in
extensionless scripts with no nearby package.json.

Thanks to Geoffrey Booth for making this work on #​53619.

Other Notable Changes

• [285bb4ee14] - crypto: update root certificates to NSS 3.107 (Node.js GitHub Bot) #​56566
• [73b5c16684] - (SEMVER-MINOR) worker: add postMessageToThread (Paolo Insogna) #​53682
• [de313b2336] - (SEMVER-MINOR) module: only emit require(esm) warning under --trace-require-module (Joyee Cheung) #​56194
• [4fba01911d] - (SEMVER-MINOR) process: add process.features.require_module (Joyee Cheung) #​55241
• [df8a045afe] - (SEMVER-MINOR) module: implement the "module-sync" exports condition (Joyee Cheung) #​54648
• [f9dc1eaef5] - (SEMVER-MINOR) module: add __esModule to require()'d ESM (Joyee Cheung) #​52166

Commits

• [d84be843e3] - benchmark: add validateStream to styleText bench (Rafael Gonzaga) #​56556
• [d8eaf5b9b8] - build: fix compatibility with V8's depot_tools (Richard Lau) #​57330
• [1ee4bf9690] - build: test macos-13 on GitHub actions (Michaël Zasso) #​56307
• [1cc8d69882] - build: build v8 with -fvisibility=hidden on macOS (Joyee Cheung) #​56275
• [52f1f7e22b] - child_process: fix parsing messages with splitted length field (Maksim Gorkov) #​56106
• [5ef3c3c996] - crypto: add missing return value check (Michael Dawson) #​56615
• [285bb4ee14] - crypto: update root certificates to NSS 3.107 (Node.js GitHub Bot) #​56566
• [46ceb9dc1c] - deps: update timezone to 2025a (Node.js GitHub Bot) #​56876
• [d4ca38fe8e] - deps: macro ENODATA is deprecated in libc++ (Cheng) #​56698
• [15214e6508] - deps: update simdutf to 6.0.3 (Node.js GitHub Bot) #​56567
• [1e44f5d84b] - deps: update simdutf to 5.7.2 (Node.js GitHub Bot) #​56388
• [b92ff7be38] - deps: update googletest to 7d76a23 (Node.js GitHub Bot) #​56387
• [e1b71a81a9] - deps: update googletest to e54519b (Node.js GitHub Bot) #​56370
• [c0d45e7f38] - deps: update simdutf to 5.7.0 (Node.js GitHub Bot) #​56332
• [d69107f5a8] - deps: update icu to 76.1 (Node.js GitHub Bot) #​55551
• [5c9a397699] - deps: V8: backport 9ab4059 (Lu Yahan) #​56781
• [8342233f6d] - deps: update corepack to 0.31.0 (Node.js GitHub Bot) #​56795
• [561493d35e] - deps,src: simplify base64 encoding (Daniel Lemire) #​52714
• [6207b2936c] - doc: move anatoli to emeritus (Michael Dawson) #​56592
• [b0ab483400] - doc: fix styles of the expandable TOC (Antoine du Hamel) #​56755
• [53e4dc2a82] - doc: add "Skip to content" button (Antoine du Hamel) #​56750
• [33ee4645c3] - doc: improve accessibility of expandable lists (Antoine du Hamel) #​56749
• [b514438418] - doc: add note regarding commit message trailers (Dario Piotrowicz) #​56736
• [627f2997e3] - doc: fix typo in example code for util.styleText (Robin Mehner) #​56720
• [68548dcb48] - doc: fix inconsistencies in WeakSet and WeakMap comparison details (Shreyans Pathak) #​56683
• [337cfb2549] - doc: add RafaelGSS as latest sec release stewards (Rafael Gonzaga) #​56682
• [e890c86d7b] - doc: clarify cjs/esm diff in queueMicrotask() vs process.nextTick() (Dario Piotrowicz) #​56659
• [978263923f] - doc: WeakSet and WeakMap comparison details (Shreyans Pathak) #​56648
• [aba280ccd8] - doc: mention prepare --security (Rafael Gonzaga) #​56617
• [0a009a527b] - doc: tweak info on reposts in ambassador program (Michael Dawson) #​56589
• [d2f09e2ab3] - doc: add type stripping to ambassadors program (Marco Ippolito) #​56598
• [b0b77d7fbe] - doc: improve internal documentation on built-in snapshot (Joyee Cheung) #​56505
• [4b3e7fee94] - doc: document CLI way to open the nodejs/bluesky PR (Antoine du Hamel) #​56506
• [03878b0384] - doc: update gcc-version for ubuntu-lts (Kunal Kumar) #​56553
• [acbbd7c1a6] - doc: fix parentheses in options (Tobias Nießen) #​56563
• [3fe80c30b8] - doc: include CVE to EOL lines as sec release process (Rafael Gonzaga) #​56520
• [ff8af58046] - doc: add esm examples to node:trace_events (Alfredo González) #​56514
• [27b9cfd135] - doc: add message for Ambassadors to promote (Michael Dawson) #​56235
• [020c939da1] - doc: allow request for TSC reviews via the GitHub UI (Antoine du Hamel) #​56493
• [1ef9c9a354] - doc: add example for piping ReadableStream (Gabriel Schulhof) #​56415
• [e675c3a7fc] - doc: expand description of parseArg's default (Kevin Gibbons) #​54431
• [bc756da876] - doc: use <ul> instead of <ol> in SECURITY.md (Antoine du Hamel) #​56346
• [ad59c82a49] - doc: clarify that WASM is trusted (Matteo Collina) #​56345
• [8e76cc69e5] - doc: move dual package shipping docs to separate repo (Joyee Cheung) #​55444
• [9fda8e29cd] - doc: mark --env-file-if-exists flag as experimental (Juan José) #​56893
• [9e975f1a7d] - doc: fix link and history of SourceMap sections (Antoine du Hamel) #​57098
• [64ce95b8fc] - doc: update require(ESM) history and stability status (Antoine du Hamel) #​55199
• [697a39248b] - doc: fix history of process.features (Antoine du Hamel) #​54897
• [7c38e503a3] - doc: add documentation for process.features (Marco Ippolito) #​54897
• [c85b386a39] - esm: fix jsdoc type refs to ModuleJobBase in esm/loader (Jacob Smith) #​56499
• [4813a6a66c] - esm: throw ERR_REQUIRE_ESM instead of ERR_INTERNAL_ASSERTION (Antoine du Hamel) #​54868
• [0d327c8e47] - esm: refactor get_format (Antoine du Hamel) #​53872
• [e87db6c9bc] - events: add hasEventListener util for validate (Sunghoon) #​55230
• [674b932f33] - http: don't emit error after destroy (Robert Nagy) #​55457
• [4c24ef8f71] - http2: omit server name when HTTP2 host is IP address (islandryu) #​56530
• [533afe8124] - lib: reduce amount of caught URL errors (Yagiz Nizipli) #​52658
• [34221a1d6e] - lib: allow CJS source map cache to be reclaimed (Chengzhong Wu) #​51711
• [f13589f1f9] - lib,src: iterate module requests of a module wrap in JS (Chengzhong Wu) #​52058
• [6afee9ea43] - meta: move one or more collaborators to emeritus (Node.js GitHub Bot) #​56580
• [85bb738739] - meta: add codeowners of security release document (Rafael Gonzaga) #​56521
• [48f9ca0992] - meta: move one or more collaborators to emeritus (Node.js GitHub Bot) #​56342
• [4d724121b4] - meta: move MoLow to TSC regular member (Moshe Atlow) #​56276
• [5e2dab7868] - module: fix bad require.resolve with option paths for . and .. (Dario Piotrowicz) #​56735
• [f507c05060] - module: simplify --inspect-brk handling (Joyee Cheung) #​55679
• [ed2d373e5a] - module: disable require(esm) for policy and network import (Joyee Cheung) #​56927
• [de313b2336] - (SEMVER-MINOR) module: only emit require(esm) warning under --trace-require-module (Joyee Cheung) #​56194
• [3d89e6b6fa] - module: mark evaluation rejection in require(esm) as handled (Joyee Cheung) #​56122
• [e01dd4bd4f] - module: do not warn when require(esm) comes from node_modules (Joyee Cheung) #​55960
• [011e6e0032] - module: fix error thrown from require(esm) hitting TLA repeatedly (Joyee Cheung) #​55520
• [fdf50289c6] - module: trim off internal stack frames for require(esm) warnings (Joyee Cheung) #​55496
• [8d33f78ca5] - module: allow ESM that failed to be required to be re-imported (Joyee Cheung) #​55502
• [8192dd6cf3] - module: include module information in require(esm) warning (Joyee Cheung) #​55397
• [1db210a0ec] - module: check --experimental-require-module separately from detection (Joyee Cheung) #​55250
• [cf8701c866] - module: use kNodeModulesRE to detect node_modules (Joyee Cheung) #​55243
• [dc66632261] - module: support 'module.exports' interop export in require(esm) (Guy Bedford) #​54563
• [1ac1dda9a4] - (SEMVER-MINOR) module: unflag --experimental-require-module (Joyee Cheung) #​55085
• [683c93f45f] - module: refator ESM loader for adding future synchronous hooks (Joyee Cheung) #​54769
• [df8a045afe] - (SEMVER-MINOR) module: implement the "module-sync" exports condition (Joyee Cheung) #​54648
• [249d82b686] - module: report unfinished TLA in ambiguous modules (Antoine du Hamel) #​54980
• [1925d729f9] - module: remove bogus assertion in CJS entrypoint handling with --import (Joyee Cheung) #​54592
• [d1331fccb2] - module: do not warn for typeless package.json when there isn't one (Joyee Cheung) #​54045
• [9916458b44] - (SEMVER-MINOR) module: unflag detect-module (Geoffrey Booth) #​53619
• [f9dc1eaef5] - (SEMVER-MINOR) module: add __esModule to require()'d ESM (Joyee Cheung) #​52166
• [b86f575504] - module: do not set CJS variables for Worker eval (Antoine du Hamel) #​53050
• [30ed93db12] - module: cache synchronous module jobs before linking (Joyee Cheung) #​52868
• [a03faf289d] - module: support ESM detection in the CJS loader (Joyee Cheung) #​52047
• [b07ad39bda] - module: detect ESM syntax by trying to recompile as SourceTextModule (Joyee Cheung) #​52413
• [132a5c190f] - module: eliminate performance cost of detection for cjs entry (Geoffrey Booth) #​52093
• [55a57a189f] - node-api: remove deprecated attribute from napi_module_register (Vladimir Morozov) #​56162
• [4fba01911d] - (SEMVER-MINOR) process: add process.features.require_module (Joyee Cheung) #​55241
• [c0fad18ac0] - src: add nullptr handling from X509_STORE_new() (Burkov Egor) #​56700
• [5b88d48cbb] - src: add default value for RSACipherConfig mode field (Burkov Egor) #​56701
• [[e3b69e57a6](https://github.com/nodejs/node/commit/

---

Configuration

📅 Schedule: Branch creation - "* 0-3 * * 1" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.