Bump the npm_and_yarn group across 1 directories with 10 updates

[dependabot]

Bumps the npm_and_yarn group with 10 updates in the /. directory:

Package	From	To
next	13.1.2	13.5.1
@adobe/css-tools	4.0.2	4.3.3
semver	5.7.1	5.7.2
@babel/traverse	7.20.12	7.23.9
postcss	8.4.14	8.4.31
next	13.5.1	13.5.6
@storybook/react	6.5.15	7.6.17
webpack	4.46.0	4.47.0
browserify-sign	4.2.1	4.2.2
tough-cookie	4.1.2	4.1.3
word-wrap	1.2.3	1.2.5

Updates next from 13.1.2 to 13.5.1

Commits

• 0c1c7f8 v13.5.1
• 9744285 v13.5.1-canary.1
• 44eba02 improve publish-release (#55597)
• c652dc8 v13.5.1-canary.0
• ffafad2 v13.5.0
• 4a589ed v13.4.20-canary.41
• deb81cf fix styled-jsx alias (#55581)
• 1a9b0f6 improve internal error logging (#55582)
• 0631549 Fix react packages are not bundled for metadata routes (#55579)
• bad5365 Update supported config options for Turbopack (#55556)
• Additional commits viewable in compare view

Updates @adobe/css-tools from 4.0.2 to 4.3.3

Changelog

Sourced from @​adobe/css-tools's changelog.

4.3.3 / 2024-01-24

• Update export property #271

4.3.2 / 2023-11-28

• Fix redos vulnerability with specific crafted css string - CVE-2023-48631
• Fix Problem parsing with :is() and nested :nth-child() #211

4.3.1 / 2023-03-14

• Fix redos vulnerability with specific crafted css string - CVE-2023-26364

4.3.0 / 2023-03-07

• Update build tools
• Update exports path and files

4.2.0 / 2023-02-21

• Add @​container support
• Add @​layer support

4.1.0 / 2023-01-25

• Support ESM Modules

Commits

• See full diff in compare view

Updates semver from 5.7.1 to 5.7.2

Release notes

Sourced from semver's releases.

v5.7.2

5.7.2 (2023-07-10)

Bug Fixes

• 2f8fd41 #585 better handling of whitespace (#585) (@​joaomoreno, @​lukekarrys)

Changelog

Sourced from semver's changelog.

5.7.2 (2023-07-10)

Bug Fixes

• 2f8fd41 #585 better handling of whitespace (#585) (@​joaomoreno, @​lukekarrys)

5.7

• Add minVersion method

5.6

• Move boolean loose param to an options object, with backwards-compatibility protection.
• Add ability to opt out of special prerelease version handling with the includePrerelease option flag.

5.5

• Add version coercion capabilities

5.4

• Add intersection checking

5.3

• Add minSatisfying method

5.2

• Add prerelease(v) that returns prerelease components

5.1

• Add Backus-Naur for ranges
• Remove excessively cute inspection methods

5.0

• Remove AMD/Browserified build artifacts
• Fix ltr and gtr when using the * range
• Fix for range * with a prerelease identifier

Commits

• f8cc313 chore: release 5.7.2
• 2f8fd41 fix: better handling of whitespace (#585)
• deb5ad5 chore: @​npmcli/template-oss@​4.16.0
• See full diff in compare view

Maintainer changes

This version was pushed to npm by lukekarrys, a new releaser for semver since your current version.

Updates @babel/traverse from 7.20.12 to 7.23.9

Release notes

Sourced from @​babel/traverse's releases.

v7.23.9 (2024-01-25)

🐛 Bug Fix

• babel-helper-transform-fixture-test-runner, babel-plugin-transform-function-name, babel-plugin-transform-modules-systemjs, babel-preset-env
  • #16225 fix: systemjs re-traverses helpers (@​liuxingbaoyu)
• babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators
  • #16226 Improve decorated private method check (@​JLHwung)
• babel-plugin-proposal-decorators, babel-plugin-transform-async-generator-functions, babel-plugin-transform-runtime, babel-preset-env
  • #16224 Properly sort core-js@3 imports (@​nicolo-ribaudo)
• babel-traverse
  • #15383 fix: Don't throw in getTypeAnnotation when using TS+inference (@​liuxingbaoyu)
• Other
  • #16210 [eslint] Fix no-use-before-define for class ref in fields (@​nicolo-ribaudo)

🏠 Internal

• babel-core, babel-parser, babel-template
  • #16222 Migrate eslint-parser to cts (@​liuxingbaoyu)
• babel-types
  • #16213 Remove @babel/types props that are not produced by the parser (@​liuxingbaoyu)

🏃‍♀️ Performance

• babel-parser
  • #16072 perf: Improve parser performance for typescript (@​liuxingbaoyu)

🔬 Output optimization

• babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators, babel-plugin-proposal-destructuring-private, babel-plugin-proposal-pipeline-operator, babel-plugin-transform-class-properties, babel-plugin-transform-class-static-block, babel-plugin-transform-new-target, babel-plugin-transform-parameters, babel-plugin-transform-private-methods, babel-preset-env
  • #16218 Improve temporary variables for decorators (@​liuxingbaoyu)
• babel-helpers, babel-plugin-proposal-explicit-resource-management, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime
  • #15959 Improve output of using (@​liuxingbaoyu)

Committers: 4

• Babel Bot (@​babel-bot)
• Huáng Jùnliàng (@​JLHwung)
• Nicolò Ribaudo (@​nicolo-ribaudo)
• @​liuxingbaoyu

v7.23.8 (2024-01-08)

🐛 Bug Fix

• babel-preset-env
  • #16181 fix: preset-env throws exception for export * as x (@​liuxingbaoyu)
• babel-helpers, babel-plugin-proposal-decorators
  • #16201 fix: decorator binds getter/setter to ctx.access for public fields (@​liuxingbaoyu)
  • #16199 fix: Class decorator correctly passes return value (@​liuxingbaoyu)

↩️ Revert

• #16202 Revert "chore: Update artifact tools (#16184)" (@​JLHwung)

🔬 Output optimization

• babel-helpers, babel-plugin-proposal-decorators, babel-plugin-transform-class-properties, babel-plugin-transform-classes, babel-plugin-transform-function-name, babel-plugin-transform-parameters, babel-plugin-transform-react-jsx, babel-plugin-transform-runtime, babel-plugin-transform-spread, babel-plugin-transform-typescript, babel-preset-env, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime

... (truncated)

Changelog

Sourced from @​babel/traverse's changelog.

v7.23.9 (2024-01-25)

🐛 Bug Fix

• babel-helper-transform-fixture-test-runner, babel-plugin-transform-function-name, babel-plugin-transform-modules-systemjs, babel-preset-env
  • #16225 fix: systemjs re-traverses helpers (@​liuxingbaoyu)
• babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators
  • #16226 Improve decorated private method check (@​JLHwung)
• babel-plugin-proposal-decorators, babel-plugin-transform-async-generator-functions, babel-plugin-transform-runtime, babel-preset-env
  • #16224 Properly sort core-js@3 imports (@​nicolo-ribaudo)
• babel-traverse
  • #15383 fix: Don't throw in getTypeAnnotation when using TS+inference (@​liuxingbaoyu)
• Other
  • #16210 [eslint] Fix no-use-before-define for class ref in fields (@​nicolo-ribaudo)

🏠 Internal

• babel-core, babel-parser, babel-template
  • #16222 Migrate eslint-parser to cts (@​liuxingbaoyu)
• babel-types
  • #16213 Remove @babel/types props that are not produced by the parser (@​liuxingbaoyu)

🏃‍♀️ Performance

• babel-parser
  • #16072 perf: Improve parser performance for typescript (@​liuxingbaoyu)

🔬 Output optimization

• babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators, babel-plugin-proposal-destructuring-private, babel-plugin-proposal-pipeline-operator, babel-plugin-transform-class-properties, babel-plugin-transform-class-static-block, babel-plugin-transform-new-target, babel-plugin-transform-parameters, babel-plugin-transform-private-methods, babel-preset-env
  • #16218 Improve temporary variables for decorators (@​liuxingbaoyu)
• babel-helpers, babel-plugin-proposal-explicit-resource-management, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime
  • #15959 Improve output of using (@​liuxingbaoyu)

v7.23.8 (2024-01-08)

🐛 Bug Fix

• babel-preset-env
  • #16181 fix: preset-env throws exception for export * as x (@​liuxingbaoyu)
• babel-helpers, babel-plugin-proposal-decorators
  • #16201 fix: decorator binds getter/setter to ctx.access for public fields (@​liuxingbaoyu)
  • #16199 fix: Class decorator correctly passes return value (@​liuxingbaoyu)

↩️ Revert

• #16202 Revert "chore: Update artifact tools (#16184)" (@​JLHwung)

🔬 Output optimization

• babel-helpers, babel-plugin-proposal-decorators, babel-plugin-transform-class-properties, babel-plugin-transform-classes, babel-plugin-transform-function-name, babel-plugin-transform-parameters, babel-plugin-transform-react-jsx, babel-plugin-transform-runtime, babel-plugin-transform-spread, babel-plugin-transform-typescript, babel-preset-env, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime
  • #16194 Improve output of super() (@​liuxingbaoyu)

v7.23.7 (2023-12-29)

🐛 Bug Fix

• babel-traverse
  • #16191 fix: Crash when removing without Program (@​liuxingbaoyu)
• babel-helpers, babel-plugin-proposal-decorators

... (truncated)

Commits

• a0dd614 v7.23.9
• 1200542 fix: Don't throw in getTypeAnnotation when using TS+inference (#15383)
• e428a6d v7.23.7
• d292822 fix: Crash when removing without Program (#16191)
• d02c1f7 v7.23.6
• cce807f Bump debug to ^4.3.1 (#16164)
• 8479012 v7.23.5
• da7dc40 Do not remove bindings when removing assignment expression path (#16131)
• fadc081 fix: Unexpected duplication of comments (#16110)
• 13a5c83 v7.23.4
• Additional commits viewable in compare view

Updates postcss from 8.4.14 to 8.4.31

Release notes

Sourced from postcss's releases.

8.4.31

• Fixed \r parsing to fix CVE-2023-44270.

8.4.30

• Improved source map performance (by @​romainmenke).

8.4.29

• Fixed Node#source.offset (by @​idoros).
• Fixed docs (by @​coliff).

8.4.28

• Fixed Root.source.end for better source map (by @​romainmenke).
• Fixed Result.root types when process() has no parser.

8.4.27

• Fixed Container clone methods types.

8.4.26

• Fixed clone methods types.

8.4.25

• Improve stringify performance (by @​romainmenke).
• Fixed docs (by @​vikaskaliramna07).

8.4.24

• Fixed Plugin types.

8.4.23

• Fixed warnings in TypeDoc.

8.4.22

• Fixed TypeScript support with node16 (by @​remcohaszing).

8.4.21

• Fixed Input#error types (by @​hudochenkov).

8.4.20

• Fixed source map generation for childless at-rules like @layer.

8.4.19

• Fixed whitespace preserving after AST transformations (by @​romainmenke).

8.4.18

• Fixed an error on absolute: true with empty sourceContent (by @​KingSora).

8.4.17

• Fixed Node.before() unexpected behavior (by @​romainmenke).
• Added TOC to docs (by @​muddv).

8.4.16

... (truncated)

Changelog

Sourced from postcss's changelog.

8.4.31

• Fixed \r parsing to fix CVE-2023-44270.

8.4.30

• Improved source map performance (by Romain Menke).

8.4.29

• Fixed Node#source.offset (by Ido Rosenthal).
• Fixed docs (by Christian Oliff).

8.4.28

• Fixed Root.source.end for better source map (by Romain Menke).
• Fixed Result.root types when process() has no parser.

8.4.27

• Fixed Container clone methods types.

8.4.26

• Fixed clone methods types.

8.4.25

• Improve stringify performance (by Romain Menke).
• Fixed docs (by @​vikaskaliramna07).

8.4.24

• Fixed Plugin types.

8.4.23

• Fixed warnings in TypeDoc.

8.4.22

• Fixed TypeScript support with node16 (by Remco Haszing).

8.4.21

• Fixed Input#error types (by Aleks Hudochenkov).

8.4.20

• Fixed source map generation for childless at-rules like @layer.

8.4.19

• Fixed whitespace preserving after AST transformations (by Romain Menke).

8.4.18

• Fixed an error on absolute: true with empty sourceContent (by Rene Haas).

8.4.17

• Fixed Node.before() unexpected behavior (by Romain Menke).
• Added TOC to docs (by Mikhail Dedov).

8.4.16

... (truncated)

Commits

• 90208de Release 8.4.31 version
• 58cc860 Fix carrier return parsing
• 4fff8e4 Improve pnpm test output
• cd43ed1 Update dependencies
• caa916b Update dependencies
• 8972f76 Typo
• 11a5286 Typo
• 45c5501 Release 8.4.30 version
• bc3c341 Update linter
• b2be58a Merge pull request #1881 from romainmenke/improve-sourcemap-performance--phil...
• Additional commits viewable in compare view

Updates next from 13.5.1 to 13.5.6

Commits

• 0c1c7f8 v13.5.1
• 9744285 v13.5.1-canary.1
• 44eba02 improve publish-release (#55597)
• c652dc8 v13.5.1-canary.0
• ffafad2 v13.5.0
• 4a589ed v13.4.20-canary.41
• deb81cf fix styled-jsx alias (#55581)
• 1a9b0f6 improve internal error logging (#55582)
• 0631549 Fix react packages are not bundled for metadata routes (#55579)
• bad5365 Update supported config options for Turbopack (#55556)
• Additional commits viewable in compare view

Updates @storybook/react from 6.5.15 to 7.6.17

Release notes

Sourced from @​storybook/react's releases.

v7.6.17

7.6.17

• Addon-docs: Fix Table of Contents heading leak - #23677, thanks @​vmizg!
• Core: Update ip version to fix CVE-2023-42282 - #26086, thanks @​drik98!

v7.6.16

7.6.16

• Addon Themes: Make type generic less strict - #26042, thanks @​yannbf!
• Interaction: Make sure that adding spies doesn't cause infinite loops with self referencing args #26019, thanks @​kasperpeulen!

v7.6.15

7.6.15

• Interaction: Make sure that adding spies doesn't cause infinite loops with self referencing args #26019, thanks @​kasperpeulen!

v7.6.14

7.6.14

• Core: Fix boolean true args in URL getting ignored - #25950, thanks @​JReinhold!

v7.6.13

7.6.13

• Next.js: Fix frameworkOptions resolution - #25907, thanks @​valentinpalkovic!
• React Native: Fix init fails when package is already installed - #25908, thanks @​dannyhw!
• React Native: Remove watcher from init - #25895, thanks @​dannyhw!
• Webpack: Update StorybookConfig import in core-webpack types.ts - #25740, thanks @​valentinpalkovic!

v7.6.12

7.6.12

• CLI: Fix upgrade detecting the wrong version of existing Storybooks - #25752, thanks @​JReinhold!

v7.6.11

7.6.11

• CLI: Update init for react native v7 - #25780, thanks @​dannyhw!
• Codemods: Add support for multiple file extensions in runCodemod function - #25708, thanks @​valentinpalkovic!

v7.6.10

7.6.10

• CLI: Fix existing version detection in upgrade - #25642, thanks @​JReinhold!
• React: Fix acorn ecma version warning - #25634, thanks @​dannyhw!

v7.6.9

7.6.9

... (truncated)

Changelog

Sourced from @​storybook/react's changelog.

7.6.17

• Addon-docs: Fix Table of Contents heading leak - #23677, thanks @​vmizg!
• Core: Update ip version to fix CVE-2023-42282 - #26086, thanks @​drik98!

7.6.16

• Addon Themes: Make type generic less strict - #26042, thanks @​yannbf!
• Interaction: Make sure that adding spies doesn't cause infinite loops with self referencing args #26019, thanks @​kasperpeulen!

7.6.15

This release accidentally didn't contain anything.

7.6.14

• Core: Fix boolean true args in URL getting ignored - #25950, thanks @​JReinhold!

7.6.13

• Next.js: Fix frameworkOptions resolution - #25907, thanks @​valentinpalkovic!
• React Native: Fix init fails when package is already installed - #25908, thanks @​dannyhw!
• React Native: Remove watcher from init - #25895, thanks @​dannyhw!
• Webpack: Update StorybookConfig import in core-webpack types.ts - #25740, thanks @​valentinpalkovic!

7.6.12

• CLI: Fix upgrade detecting the wrong version of existing Storybooks - #25752, thanks @​JReinhold!

7.6.11

• CLI: Update init for react native v7 - #25780, thanks @​dannyhw!
• Codemods: Add support for multiple file extensions in runCodemod function - #25708, thanks @​valentinpalkovic!

7.6.10

• CLI: Fix existing version detection in upgrade - #25642, thanks @​JReinhold!
• React: Fix acorn ecma version warning - #25634, thanks @​dannyhw!

7.6.9

• ConfigFile: Fix export specifiers - #25590, thanks @​shilman!
• Webpack5: Make export-order-loader compatible with both esm and cjs - #25540, thanks @​mlazari!
• CLI: Support version specifiers in init, upgrade and sandbox - #25526, thanks @​ndelangen, @​jreinhold!

7.6.8

• Addon-actions: Fix module resolution for react-native - #25296, thanks @​dannyhw!
• Storysource: Fix import error - #25391, thanks @​unional!

... (truncated)

Commits

• 60bf2b5 Bump version from "7.6.16" to "7.6.17" [skip ci]
• 7ddca37 Update snapshot
• 287300b Bump version from "7.6.15" to "7.6.16" [skip ci]
• 8bcc3b4 Bump version from "7.6.14" to "7.6.15" [skip ci]
• 8d42c55 Bump version from "7.6.13" to "7.6.14" [skip ci]
• 95ed703 Bump version from "7.6.12" to "7.6.13" [skip ci]
• cebb1a7 Bump version from "7.6.11" to "7.6.12" [skip ci]
• a8b5861 Bump version from "7.6.10" to "7.6.11" [skip ci]
• 0a8f25a Bump version from "7.6.9" to "7.6.10" [skip ci]
• ed9f791 Merge pull request #25634 from storybookjs/dannyhw/fix-acornparser-warning
• Additional commits viewable in compare view

Updates webpack from 4.46.0 to 4.47.0

Release notes

Sourced from webpack's releases.

v4.47.0

New Features

• [Security] - Add support for md4 in Node >=18. by @​iclanton in webpack/webpack#17628

New Contributors

• @​iclanton made their first contribution in webpack/webpack#17628

Full Changelog: webpack/webpack@v4.46.0...v4.47.0

Commits

• dfffd6a 4.47.0
• 7395af8 Merge pull request #17628 from iclanton/webpack4-md4-hash
• 9b50972 Update SplitChunksPlugin to use the updated createHash function.
• 6f6ae98 Add support for md4 in Node >=18.
• 3956274 Merge pull request #13778 from StyleT/feature/custom_externals_for_systemjs_t...
• 1f11600 fix: fixed work of the non-system type externals for "system" library target
• See full diff in compare view

Maintainer changes

This version was pushed to npm by thelarkinn, a new releaser for webpack since your current version.

Updates browserify-sign from 4.2.1 to 4.2.2

Changelog

Sourced from browserify-sign's changelog.

v4.2.2 - 2023-10-25

Fixed

• [Tests] log when openssl doesn't support cipher [#37](https://github.com/crypto-browserify/browserify-sign/issues/37)

Commits

• Only apps should have lockfiles 09a8995
• [eslint] switch to eslint 83fe463
• [meta] add npmignore and auto-changelog 4418183
• [meta] fix package.json indentation 9ac5a5e
• [Tests] migrate from travis to github actions d845d85
• [Fix] sign: throw on unsupported padding scheme 8767739
• [Fix] properly check the upper bound for DSA signatures 85994cd
• [Tests] handle openSSL not supporting a scheme f5f17c2
• [Deps] update bn.js, browserify-rsa, elliptic, parse-asn1, readable-stream, safe-buffer a67d0eb
• [Dev Deps] update nyc, standard, tape cc5350b
• [Tests] always run coverage; downgrade nyc 75ce1d5
• [meta] add safe-publish-latest dcf49ce
• [Tests] add npm run posttest 75dd8fd
• [Dev Deps] update tape 3aec038
• [Tests] skip unsupported schemes 703c83e
• [Tests] node < 6 lacks array includes 3aa43cf
• [Dev Deps] fix eslint range 98d4e0d

Commits

• 4af5a90 v4.2.2
• 3aec038 [Dev Deps] update tape
• 85994cd [Fix] properly check the upper bound for DSA signatures
• 9ac5a5e [meta] fix package.json indentation
• dcf49ce [meta] add safe-publish-latest
• 4418183 [meta] add npmignore and auto-changelog
• 8767739 [Fix] sign: throw on unsupported padding scheme
• 5f6fb17 [Tests] log when openssl doesn't support cipher
• f5f17c2 [Tests] handle openSSL not supporting a scheme
• d845d85 [Tests] migrate from travis to github actions
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by ljharb, a new releaser for browserify-sign since your current version.

Updates tough-cookie from 4.1.2 to 4.1.3

Release notes

Sourced from tough-cookie's releases.

4.1.3

Security fix for Prototype Pollution discovery in #282. This is a minor release, although output from the inspect utility is affected by this change, we felt this change was important enough to be pushed into the next patch.

Commits

• 4ff4d29 4.1.3 release preparation, update the package and lib/version to 4.1.3. (#284)
• 12d4747 Prevent prototype pollution in cookie memstore (#283)
• f06b72d Fix documentation for store.findCookies, missing allowSpecialUseDomain proper...
• See full diff in compare view

Updates word-wrap from 1.2.3 to 1.2.5

Release notes

Sourced from word-wrap's releases.

1.2.5

Changes:

Reverts default value for options.indent to two spaces ' '.

Full Changelog: jonschlinkert/word-wrap@1.2.4...1.2.5

1.2.4

What's Changed

• Remove default indent by @​mohd-akram in jonschlinkert/word-wrap#24
• 🔒fix: CVE 2023 26115 (2) by @​OlafConijn in jonschlinkert/word-wrap#41
• 🔒 fix: CVE-2023-26115 by @​aashutoshrathi in jonschlinkert/word-wrap#33
• chore: publish workflow by @​OlafConijn in jonschlinkert/word-wrap#42

New Contributors

• @​mohd-akram made their first contribution in jonschlinkert/word-wrap#24
• @​OlafConijn made their first contribution in jonschlinkert/word-wrap#41
• @​aashutoshrathi made their first contribution in jonschlinkert/word-wrap#33

Full Changelog: jonschlinkert/word-wrap@1.2.3...1.2.4

Commits

• 207044e 1.2.5
• 9894315 revert default indent
• f64b188 run verb to generate README
• 03ea082 Merge pull request #42 from jonschlinkert/chore/publish-workflow
• 420dce9 Merge pull request #41 from jonschlinkert/fix/CVE-2023-26115-2
• bfa694e Update .github/workflows/publish.yml
• ace0b3c chore: bump version to 1.2.4
• 6fd7275 chore: add publish workflow
• 30d6daf chore: fix test
• 655929c chore: remove package-lock
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
  You can disable automated security fix PRs for this repo from the Security Alerts page.