chore(deps-dev): bump the npm_and_yarn group across 1 directory with 2 updates

[dependabot]

Bumps the npm_and_yarn group with 2 updates in the / directory: stylelint and stylelint-selector-bem-pattern.

Updates stylelint from 13.13.1 to 16.13.1

Release notes

Sourced from stylelint's releases.

16.13.1

• Fixed: ignore.default is not a function (#8305) (@​romainmenke).

16.13.0

• Deprecated: ambiguous position arguments passed to utils.report() (#8244) (@​romainmenke).
• Added: lax/strict values to the fix Node.js API option and CLI flag (#8106) (@​ryo-manba).
• Added: support for profiling rule performance via the TIMING environment variable (#8108) (@​ryo-manba).
• Added: at-rule-descriptor-no-unknown rule (#8197) (@​ryo-manba).
• Added: at-rule-descriptor-value-no-unknown rule (#8211) (@​ryo-manba).
• Added: at-rule-no-deprecated rule (#8251) (@​jeddy3).
• Added: at-rule-prelude-no-invalid rule (#8268) (@​ryo-manba).
• Added: declaration-property-value-keyword-no-deprecated rule (#8223) (@​Mouvedia).
• Added: "ignore": ["at-rule-preludes", "declaration-values"] to string-no-newline (#8214) (@​ryo-manba).
• Added: messageArgs to declaration-property-value-no-unknown, font-family-name-quotes, font-family-no-duplicate-names, function-calc-no-unspaced-operator, import-notation, media-feature-name-unit-allowed-list, selector-attribute-quotes and selector-pseudo-element-colon-notation (#8285 & #8252) (@​Mouvedia).
• Fixed: deprecation warnings to only display once per (custom) rule (#8265) (@​romainmenke).
• Fixed: *-no-vendor-prefix message ambiguity (#8239) (@​Mouvedia).
• Fixed: at-rule-(dis)allowed-list, at-rule-no-vendor-prefix, at-rule-property-required-list message argument (#8277) (@​Mouvedia).
• Fixed: at-rule-property-required-list message for inclusion of properties and descriptors (#8207) (@​jeddy3).
• Fixed: at-rule-* false positives and negatives for @charset rule (#8215) (@​jeddy3).
• Fixed: declaration-property-value-no-unknown false positives for descriptors (#8240) (@​jeddy3).
• Fixed: property-(dis)allowed-list false negatives for custom properties, use /^--/ to (dis)allow them (#8209) (@​fbasmaison-lucca).
• Fixed: property-no-unknown false positives for descriptors (#8203) (@​jeddy3).
• Fixed: selector-pseudo-class-no-unknown false positives for deprecated pseudo-classes (#8264) (@​Mouvedia).
• Fixed: selector-type-case false positives for hatchPath (#8264) (@​Mouvedia).
• Fixed: selector-type-no-unknown false positives for shadow, hatch and hatchpath (#8264) (@​Mouvedia).

16.12.0

• Added: selector-pseudo-class-allowed-list now checks @page pseudo-classes (#8176) (@​Mouvedia).
• Added: selector-pseudo-class-disallowed-list now checks @page pseudo-classes (#8171) (@​Mouvedia).
• Fixed: at-rule-property-required-list message to use "descriptor" for accuracy (#8186) (@​ybiquitous).
• Fixed: custom-property-no-missing-var-function false positives for container-name (#8157) (@​Mouvedia).
• Fixed: custom-property-no-missing-var-function false positives for custom properties passed to running() (#8172) (@​Mouvedia).
• Fixed: function-no-unknown false positives for running() (#8172) (@​Mouvedia).
• Fixed: selector-pseudo-class-no-unknown false positives for :open (#8184) (@​lukewarlow).
• Fixed: selector-pseudo-class-no-unknown false positives for :recto, :verso and :nth() (#8170) (@​Mouvedia).
• Fixed: selector-pseudo-class-no-unknown false positives for some moz-* vendor-prefixed pseudo-classes (#8188) (@​Mouvedia).
• Fixed: selector-pseudo-element-no-unknown false positives for ::details-content (#8174) (@​lukewarlow).
• Fixed: selector-type-no-unknown false positives for idents in functional pseudo-classes (#8191) (@​elskhn).
• Fixed: value-keyword-case false negatives (#8158) (@​Mouvedia).
• Fixed: value-keyword-case false positives for vendor-prefixed system colors (#8146) (@​Mouvedia).

16.11.0

• Added: --report-unscoped-disables CLI flag and reportUnscopedDisables option to Node.js API and configuration object (#8024) (@​Mouvedia).
• Added: ignoreFunctions: [] to media-query-no-invalid (#8060) (@​ryo-manba).
• Added: name configuration property under overrides (#8095) (@​ryo-manba).
• Fixed: benchmark-rule script to resolve TypeError (#8090) (@​ybiquitous).
• Fixed: github formatter deprecation warning link to https://stylelint.io/awesome-stylelint#formatters (#8115) (@​ryo-manba).
• Fixed: function-calc-no-unspaced-operator false negatives for calc-size (#8026) (@​azat-io).
• Fixed: max-nesting-depth false positives when the & selector is being ignored (#8048) (@​ryo-manba).
• Fixed: media-feature-name-value-no-unknown false positives for display-mode: picture-in-picture (#8136) (@​Mouvedia).

... (truncated)

Changelog

Sourced from stylelint's changelog.

16.13.1 - 2025-01-13

It fixes one bug due to an upstream change in our ignore dependency.

• Fixed: ignore.default is not a function (#8305) (@​romainmenke).

16.13.0 - 2025-01-12

It adds 3 rules to help you write error-free at-rules and 2 rules to warn you about deprecated CSS features. We've turned these rules on in our standard config.

It also adds new rule options, a feature to display how long rules take, lax autofix and support for messageArgs in more rules. It fixes 7 bugs.

Lastly, we've made a deprecation that may affect some plugins. We've updated our docs for plugin authors and end users on how to silence deprecation warnings.

• Deprecated: ambiguous position arguments passed to utils.report() (#8244) (@​romainmenke).
• Added: lax/strict values to the fix Node.js API option and CLI flag (#8106) (@​ryo-manba).
• Added: support for profiling rule performance via the TIMING environment variable (#8108) (@​ryo-manba).
• Added: at-rule-descriptor-no-unknown rule (#8197) (@​ryo-manba).
• Added: at-rule-descriptor-value-no-unknown rule (#8211) (@​ryo-manba).
• Added: at-rule-no-deprecated rule (#8251) (@​jeddy3).
• Added: at-rule-prelude-no-invalid rule (#8268) (@​ryo-manba).
• Added: declaration-property-value-keyword-no-deprecated rule (#8223) (@​Mouvedia).
• Added: "ignore": ["at-rule-preludes", "declaration-values"] to string-no-newline (#8214) (@​ryo-manba).
• Added: messageArgs to declaration-property-value-no-unknown, font-family-name-quotes, font-family-no-duplicate-names, function-calc-no-unspaced-operator, import-notation, media-feature-name-unit-allowed-list, selector-attribute-quotes and selector-pseudo-element-colon-notation (#8285 & #8252) (@​Mouvedia).
• Fixed: deprecation warnings to only display once per (custom) rule (#8265) (@​romainmenke).
• Fixed: *-no-vendor-prefix message ambiguity (#8239) (@​Mouvedia).
• Fixed: at-rule-(dis)allowed-list, at-rule-no-vendor-prefix, at-rule-property-required-list message argument (#8277) (@​Mouvedia).
• Fixed: at-rule-property-required-list message for inclusion of properties and descriptors (#8207) (@​jeddy3).
• Fixed: at-rule-* false positives and negatives for @charset rule (#8215) (@​jeddy3).
• Fixed: declaration-property-value-no-unknown false positives for descriptors (#8240) (@​jeddy3).
• Fixed: property-(dis)allowed-list false negatives for custom properties, use /^--/ to (dis)allow them (#8209) (@​fbasmaison-lucca).
• Fixed: property-no-unknown false positives for descriptors (#8203) (@​jeddy3).
• Fixed: selector-pseudo-class-no-unknown false positives for deprecated pseudo-classes (#8264) (@​Mouvedia).
• Fixed: selector-type-case false positives for hatchPath (#8264) (@​Mouvedia).
• Fixed: selector-type-no-unknown false positives for shadow, hatch and hatchpath (#8264) (@​Mouvedia).

16.12.0 - 2024-12-15

• Added: selector-pseudo-class-allowed-list now checks @page pseudo-classes (#8176) (@​Mouvedia).
• Added: selector-pseudo-class-disallowed-list now checks @page pseudo-classes (#8171) (@​Mouvedia).
• Fixed: at-rule-property-required-list message to use "descriptor" for accuracy (#8186) (@​ybiquitous).
• Fixed: custom-property-no-missing-var-function false positives for container-name (#8157) (@​Mouvedia).
• Fixed: custom-property-no-missing-var-function false positives for custom properties passed to running() (#8172) (@​Mouvedia).
• Fixed: function-no-unknown false positives for running() (#8172) (@​Mouvedia).
• Fixed: selector-pseudo-class-no-unknown false positives for :open (#8184) (@​lukewarlow).
• Fixed: selector-pseudo-class-no-unknown false positives for :recto, :verso and :nth() (#8170) (@​Mouvedia).
• Fixed: selector-pseudo-class-no-unknown false positives for some moz-* vendor-prefixed pseudo-classes (#8188) (@​Mouvedia).
• Fixed: selector-pseudo-element-no-unknown false positives for ::details-content (#8174) (@​lukewarlow).
• Fixed: selector-type-no-unknown false positives for idents in functional pseudo-classes (#8191) (@​elskhn).
• Fixed: value-keyword-case false negatives (#8158) (@​Mouvedia).

... (truncated)

Commits

• 8a173d4 16.13.1
• c0df295 Prepare 16.13.1 (#8306)
• 7ea4219 Fix ignore.default is not a function (#8305)
• f5055fe Bump typescript from 5.7.2 to 5.7.3 in the typescript group (#8299)
• 5f82aa8 Bump rollup from 4.30.0 to 4.30.1 (#8300)
• 7aba28e Bump eslint from 9.17.0 to 9.18.0 in the eslint group (#8298)
• 81baea5 16.13.0
• 6fc88f5 Prepare 16.13.0 (#8202)
• f6d5055 Refactor to commonize regex patterns (#8272)
• a80cdf6 Add messageArgs to declaration-property-value-no-unknown, `font-family-na...
• Additional commits viewable in compare view

Updates stylelint-selector-bem-pattern from 2.1.1 to 4.0.1

Changelog

Sourced from stylelint-selector-bem-pattern's changelog.

4.0.1

• Move eslint-plugin-jest to devDependencies

4.0.0

• Move stylelint to peerDependencies
• Upgrade stylelint to ^16.2.0 This has required the package to move to ESM as required by stylelint https://stylelint.io/migration-guide/to-16/#deprecated-commonjs-api

3.0.1

• Update postcss-bem-linter to ^4.0.1

3.0.0

• Update postcss-bem-linter to ^4.0.0
• Update stylelint to ^15.9.0 - BREAKING CHANGE
  • Drops support for Node 12

Commits

• 0cb4369 4.0.1
• 84c2491 depx: move eslint-plugin-jest to devDependency
• 18c75d7 ci: update ci node versions
• 599d80a update node CI version
• c267429 4.0.0
• 784d290 docs: update README
• 72fb16a feat: update stylelint to 16.2.0
• 5a41de7 feat(package)!: move stylelint to a peerDependency
• b1abef4 remove duplicative lockfile
• 562b9a8 3.0.1
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
  You can disable automated security fix PRs for this repo from the Security Alerts page.

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Updated (UTC)
deriv-app	❌ Failed (Inspect)		Jan 14, 2025 8:51am

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details

Scanned Manifest Files

package-lock.json

• [email protected]
• @csstools/[email protected]
• @csstools/[email protected]
• @csstools/[email protected]
• @csstools/[email protected]
• @dual-bundle/[email protected]
• @keyv/[email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• @stylelint/[email protected]
• @stylelint/[email protected]
• @types/[email protected]
• @types/[email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]

package.json

• stylelint@^16.13.1
• stylelint-selector-bem-pattern@^4.0.1
• stylelint@^13.13.1
• stylelint-selector-bem-pattern@^2.1.0

[github-actions]

A production App ID was automatically generated for this PR. (log)

• PR: chore(deps-dev): bump the npm_and_yarn group across 1 directory with 2 updates #17974
• URLs:
  • w/ App ID + Server: https://deriv-app-git-dependabot-npmandyarnnpmandyarn-f7a6df0923.binary.sx?qa_server=red.derivws.com&app_id=38672
  • Original: https://deriv-app-git-dependabot-npmandyarnnpmandyarn-f7a6df0923.binary.sx
• App ID: 38672

Click here to copy & paste above information.

- **PR**: [https://github.com/deriv-com/deriv-app/pull/17974](https://github.com/deriv-com/deriv-app/pull/17974)
- **URLs**:
    - **w/ App ID + Server**: https://deriv-app-git-dependabot-npmandyarnnpmandyarn-f7a6df0923.binary.sx?qa_server=red.derivws.com&app_id=38672
    - **Original**: https://deriv-app-git-dependabot-npmandyarnnpmandyarn-f7a6df0923.binary.sx
- **App ID**: `38672`

[github-actions]

⏳ Generating Lighthouse report...