fix(deps): update dependency arctic to v3

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
arctic	1.9.2 -> 3.1.2

---

Release Notes

pilcrowonpaper/arctic (arctic)

v3.1.2

Compare Source

• Export TikTok provider (#​249).

v3.1.1

Compare Source

• Fix Authentik endpoints (#​244).

v3.1.0

Compare Source

• Add Battle.net provider (#​241).

v3.0.0

Arctic v3 is here! This is a small major release that adds support for public OAuth clients. There are only a few breaking changes and most breaking changes are small.

npm install arctic@latest

Changes

• [Breaking] Remove clientSecret parameter from Etsy constructor.
• [Breaking] Add codeVerifier parameter to createAuthorizationURL() and validateAuthorizationCode() in Auth0, Discord, Spotify, WorkOS.
• [Breaking] Replaced domain parameter with baseURL parameter for Authentik, GitLab constructor.
• [Breaking] Replaced poolURL parameter with domain parameter for AmazonCognito constructor.
• [Breaking] Add scopes parameter to refreshAccessToken() in AmazonCognito, MicrosoftEntraId.
• [Breaking] Update MyAnimeList constructor.
• [Breaking] Stricter compliance to RFC 6749 for OAuth2Client.
• Add UnexpectedResponseError and UnexpectedErrorResponseBodyError errors.
• Allow null as clientSecret in AmazonCognito, Auth0, Authentik, Bungie, Discord, GitLab, KeyCloak, MicrosoftEntraId, Roblox, Salesforce, Spotify, Twitter, WorkOS constructor.
• Fix scopes parameter in Strava.createAuthorizationURL().
• Add TikTok provider.

v2.0.0

Major changes

• createAuthorizationURL() no longer returns a Promise
• validateAuthorizationCode() and refreshAccessToken() returns OAuth2Tokens
• validateAuthorizationCode() and refreshAccessToken() can throw one of OAuth2RequestError, ArcticFetchError, or Error
• Scopes are no longer set by default, including openid and those required by the provider
• Updated parameters for Apple, GitHub, GitLab, MicrosoftEntraId, MyAnimeList, Okta, Osu, and Salesforce
• Removed options.scope parameter from createAuthorizationURL()
• Removed OAuth2Provider and OAuth2ProviderWithPKCE
• Update createAuthorizationURL() provider methods

Minor changes

• Add Polar provider.
• Add Start.gg provider.
• Add Bungie.Net provider.
• Add refreshAccessToken() to GitHub
• createAuthorizationURL() returns AuthorizationCodeAuthorizationURL
• Add decodeIdToken()
• Add token revocation API

Patch changes

• Remove @oslojs/oauth2 dependency
• Fix Amazon Cognito provider

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[changeset-bot]

⚠️ No Changeset found

Latest commit: b64419a

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR