build(deps): bump the production-dependencies group with 4 updates

[dependabot]

Bumps the production-dependencies group with 4 updates: algoliasearch, hexo-util, jsdom and moment.

Updates algoliasearch from 4.20.0 to 4.22.1

Release notes

Sourced from algoliasearch's releases.

4.22.1

v4.22.1

• fix(recommend): update recommended-for-you model type (#1500) (f94ce64), closes #1500

4.22.0

v4.22.0

• fix(recommend): update TrendingFacetHit facetValue type to string (#1498) (ac9d6e2), closes #1498

Why

The trending-facets API only returns type string for facetValue.

A follow-up on #1494 as other models return items/hits which are of type RecordWithObjectID

However, trending-facets model returns a list of TrendingFacetHit which (by definition) don't have an objectID property.

How

To simplify the code, we can remove the type argument TObject for trending-facets

Impact

If you're not using TypeScript or the trending-facets model, there is nothing to change. You can ignore the following.

Otherwise, you will need to remove the type argument passed to getTrendingFacets and the code goes from this:

type FacetType = {
  facetName: string;
  facetValue: string;
}
const { results } = await client.getTrendingFacets<FacetType>(/**/)

To this:

const { results } = await client.getTrendingFacets(/**/)

4.21.1

v4.21.1

• fix(recommend): RecommendedForYouQuery userToken should be required (#1496) (d20b253), closes #1496

... (truncated)

Changelog

Sourced from algoliasearch's changelog.

v4.22.1

• fix(recommend): update recommended-for-you model type (#1500) (f94ce64), closes #1500

v4.22.0

• fix(recommend): update TrendingFacetHit facetValue type to string (#1498) (ac9d6e2), closes #1498

v4.21.1

• fix(recommend): RecommendedForYouQuery userToken should be required (#1496) (d20b253), closes #1496

v4.21.0

• feat(recommend): add recommended-for-you model (#1490) (004f033), closes #1490
• fix(recommend): getTrendingFacets typing (#1494) (94b46b5), closes #1494
• docs(readme): fix typo (#1486) (db9953c), closes #1486

Commits

• 252228a chore: release v4.22.1 (#1502)
• f94ce64 fix(recommend): update recommended-for-you model type (#1500)
• 5a2a128 chore: release v4.22.0 (#1499)
• ac9d6e2 fix(recommend): update TrendingFacetHit facetValue type to string (#1498)
• ea7b9b1 chore: release v4.21.1 (#1497)
• d20b253 fix(recommend): RecommendedForYouQuery userToken should be required (#1496)
• ccead52 chore: release v4.21.0 (#1495)
• 004f033 feat(recommend): add recommended-for-you model (#1490)
• 94b46b5 fix(recommend): getTrendingFacets typing (#1494)
• db9953c docs(readme): fix typo (#1486)
• See full diff in compare view

Updates hexo-util from 3.1.0 to 3.2.0

Release notes

Sourced from hexo-util's releases.

v3.2.0

New Features

• feat(html_tag): support twitter:player by @​D-Sketon in hexojs/hexo-util#385

Fixed

• fix: inaccurate type by @​liby in hexojs/hexo-util#347
• fix: fix type by @​D-Sketon in hexojs/hexo-util#358
• fix(permalink): handle invalid permalink setting by @​stevenjoezhang in hexojs/hexo-util#384
• fix(url_for): some improvement for url_for by @​dimaslanjaka in hexojs/hexo-util#307
• build(tsc): fix tsconfig for tsc -b --watch by @​uiolee in hexojs/hexo-util#389

Test

• test: replace nyc with c8 by @​uiolee in hexojs/hexo-util#356
• test: improve coverage by @​D-Sketon in hexojs/hexo-util#354

Dependencies

• chore(dependabot): ignore @types/node update and reduce PR from dependabot by @​yoshinorin in hexojs/hexo-util#343

Chore

• chore(SECURITY): Create SECURITY.md by @​uiolee in hexojs/hexo-util#383
• chore(deps-dev): remove @​ts/eslint-plugin, parser by @​uiolee in hexojs/hexo-util#387

Full Changelog: hexojs/hexo-util@v3.1.0...v3.2.0

Commits

• 738e6e8 release: 3.2.0
• b207833 fix(url_for): some improvement for url_for (#307)
• 6f29f53 build(tsc): fix tsconfig for tsc -b --watch (#389)
• 092daf6 fix(permalink): handle invalid permalink setting (#384)
• 460621e chore(deps-dev): remove @​ts/eslint-plugin, parser (#387)
• 5ed3d5c feat(html_tag): support twitter:player (#385)
• ec7fd7c Create SECURITY.md (#383)
• 117e8bf chore(dependabot): ignore @types/node update and reduce PR from dependabot ...
• ca44aac fix(is_external_link): type (#358)
• da3d8da test: improve coverage (#354)
• Additional commits viewable in compare view

Updates jsdom from 22.1.0 to 24.0.0

Release notes

Sourced from jsdom's releases.

Version 24.0.0

This release reverts our selector engine back to nwsapi. As discussed in #3659, the performance regressions from @asamuzakjp/dom-selector turned out to be higher than anticipated. In the future, we can revisit @asamuzakjp/dom-selector after it reaches nwsapi's performance on the two real-world benchmarks provided by the community.

Since reverting to nwsapi causes several functionality regressions, e.g. removing :has() support, we've decided to make this a major version.

Additionally:

• Small fixes to edge-case behavior of the following properties: input.maxLength, input.minLength, input.size, progress.max, tableCell.colSpan, tableCell.rowSpan, tableCol.span, textArea.cols, textArea.maxLength, textArea.minLength, textArea.rows.

Version 23.2.0

This release switches our CSS selector engine from nwsapi to @asamuzakjp/dom-selector. The new engine is more actively maintained, and supports many new selectors: see the package's documentation for the full list. It also works better with shadow trees.

There is a potential of a performance regression due to this change. In our stress test benchmark, which runs most of these 273 selectors against this 128 KiB document, the new engine completes the benchmark only 0.25x as fast. However, we're hopeful that in more moderate usage this will not be a significant issue. Any help speeding up @asamuzakjp/dom-selector is appreciated, and feel free to open an issue if this has had a significant impact on your project.

Version 23.1.0

• Added an initial implementation of ElementInternals, including the shadowRoot getter and the string-valued ARIA properties. (zjffun)
• Added the string-valued ARIA attribute-reflecting properties to Element.
• Fixed history.pushState() and history.replaceState() to follow the latest specification, notably with regards to how they handle empty string inputs and what new URLs are possible.
• Fixed the input.valueAsANumber setter to handle NaN correctly. (alexandertrefz)
• Updated various dependencies, including cssstyle which contains several bug fixes.

Version 23.0.1

• Fixed the incorrect canvas peer dependency introduced in v23.0.0.

Version 23.0.0

• Node.js v18 is now the minimum supported version.
• Updated various dependencies, including whatwg-url which integrates various additions to the URL and URLSearchParams objects.

Changelog

Sourced from jsdom's changelog.

24.0.0

This release reverts our selector engine back to nwsapi. As discussed in #3659, the performance regressions from @asamuzakjp/dom-selector turned out to be higher than anticipated. In the future, we can revisit @asamuzakjp/dom-selector after it reaches nwsapi's performance on the two real-world benchmarks provided by the community.

Since reverting to nwsapi causes several functionality regressions, e.g. removing :has() support, we've decided to make this a major version.

Additionally:

• Small fixes to edge-case behavior of the following properties: input.maxLength, input.minLength, input.size, progress.max, tableCell.colSpan, tableCell.rowSpan, tableCol.span, textArea.cols, textArea.maxLength, textArea.minLength, textArea.rows.

23.2.0

This release switches our CSS selector engine from nwsapi to @asamuzakjp/dom-selector. The new engine is more actively maintained, and supports many new selectors: see the package's documentation for the full list. It also works better with shadow trees.

There is a potential of a performance regression due to this change. In our stress test benchmark, which runs most of these 273 selectors against this 128 KiB document, the new engine completes the benchmark only 0.25x as fast. However, we're hopeful that in more moderate usage this will not be a significant issue. Any help speeding up @asamuzakjp/dom-selector is appreciated, and feel free to open an issue if this has had a significant impact on your project.

23.1.0

• Added an initial implementation of ElementInternals, including the shadowRoot getter and the string-valued ARIA properties. (zjffun)
• Added the string-valued ARIA attribute-reflecting properties to Element.
• Fixed history.pushState() and history.replaceState() to follow the latest specification, notably with regards to how they handle empty string inputs and what new URLs are possible.
• Fixed the input.valueAsANumber setter to handle NaN correctly. (alexandertrefz)
• Updated various dependencies, including cssstyle which contains several bug fixes.

23.0.1

• Fixed the incorrect canvas peer dependency introduced in v23.0.0.

23.0.0

• Node.js v18 is now the minimum supported version.
• Updated various dependencies, including whatwg-url which integrates various additions to the URL and URLSearchParams objects.

Commits

• 2f8a730 Version 24.0.0
• db0a4dc Implement the remaining types of numeric reflection
• c1d7005 Implement full long reflection
• ac815ff Revert back to nwsapi
• 5b1a49e Fix changelog link to dom-selector
• cf8b707 Version 23.2.0
• 908f27d Update dom-selector and roll web platform tests
• c039e52 Switch from nwsapi to dom-selector
• b677627 Add new CSS selectors benchmark
• 4b33d36 Enable WPT directories css/selectors and css/css-scoping
• Additional commits viewable in compare view

Updates moment from 2.29.4 to 2.30.1

Changelog

Sourced from moment's changelog.

2.30.1

• Release Dec 27, 2023
• Revert moment/moment#5827, because it's breaking a lot of TS code.

2.30.0 Full changelog

• Release Dec 26, 2023

Commits

• 485d9a7 Build 2.30.1
• e048b09 Bump version to 2.30.1
• f9f2d58 Update changelog for 2.30.1
• a52ffb2 Revert "Merge pull request #5827 from BobZombie:feature/fix_d.ts"
• ddd6809 Build 2.30.0
• be64d00 Bump version to 2.30.0
• ad41179 Update changelog for 2.30.0
• 63fe479 [misc] Make code ES6 compatible
• 0f0195f Revert "Merge pull request #5599 from Alanscut:issue_4985"
• 15b82f5 Revert "Merge pull request #5597 from Alanscut:issue-5596"
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

---

This change is 

[dependabot]

Superseded by #737.