Bump the development-dependencies group across 1 directory with 6 updates

[dependabot]

Bumps the development-dependencies group with 6 updates in the / directory:

Package	From	To
@vscode/test-cli	0.0.10	0.0.11
@vscode/vsce	3.4.1	3.4.2
esbuild	0.25.4	0.25.5
mocha	11.4.0	11.5.0
msw	2.8.4	2.8.5
typescript-eslint	8.32.1	8.33.0

Updates @vscode/test-cli from 0.0.10 to 0.0.11

Changelog

Sourced from @​vscode/test-cli's changelog.

0.0.11 - 2024-07-05

• Package version bumps

Commits

• 3c3b7b0 0.0.11
• 651cf24 docs: 0.0.11
• efbadc3 Bump koa from 2.15.4 to 2.16.1 (#72)
• dd0dcd5 Bump tar-fs from 3.0.5 to 3.0.8 (#70)
• f337237 Bump koa from 2.15.0 to 2.15.4 (#68)
• a1ee6aa Fix dependency issues (#66)
• 4e39a05 Bump nanoid and mocha (#64)
• 1ade329 Bump path-to-regexp from 6.2.1 to 6.3.0 (#58)
• ca11885 Merge pull request #56 from microsoft/connor4312/issue-55
• 0780ad3 fix: narrow mocha.reporter typings
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by microsoft1es, a new releaser for @​vscode/test-cli since your current version.

Updates @vscode/vsce from 3.4.1 to 3.4.2

Release notes

Sourced from @​vscode/vsce's releases.

v3.4.2

Changes:

• #1152: Only scan secrets when .env is ignored and vice versa
• #1155: Fix npm token scanning false positives
• #1151: Do not scan node modules and improve error messages for secret scanning

This list of changes was auto generated.

v3.4.2-2

Changes:

• #1152: Only scan secrets when .env is ignored and vice versa

This list of changes was auto generated.

v3.4.2-1

Changes:

• #1155: Fix npm token scanning false positives

This list of changes was auto generated.

v3.4.2-0

Changes:

• #1151: Do not scan node modules and improve error messages for secret scanning

This list of changes was auto generated.

Commits

• 0789737 Merge pull request #1152 from microsoft/benibenj/handsome-stoat
• 80fdafe Merge remote-tracking branch 'origin/main' into benibenj/handsome-stoat
• 18221d1 Merge pull request #1155 from microsoft/benibenj/visible-slug
• 2ec3bb2 fix npm token scanning false positives
• 2bc74a9 Merge pull request #1151 from microsoft/benibenj/aggressive-parrotfish
• 5f6ed82 only scan secrets when dot env is ignored and vice versa
• 1e77be9 Do not scan node modules and better error message for secret scanning
• See full diff in compare view

Updates esbuild from 0.25.4 to 0.25.5

Release notes

Sourced from esbuild's releases.

v0.25.5

• Fix a regression with browser in package.json (#4187)

  The fix to #4144 in version 0.25.3 introduced a regression that caused browser overrides specified in package.json to fail to override relative path names that end in a trailing slash. That behavior change affected the axios@0.30.0 package. This regression has been fixed, and now has test coverage.

• Add support for certain keywords as TypeScript tuple labels (#4192)

  Previously esbuild could incorrectly fail to parse certain keywords as TypeScript tuple labels that are parsed by the official TypeScript compiler if they were followed by a ? modifier. These labels included function, import, infer, new, readonly, and typeof. With this release, these keywords will now be parsed correctly. Here's an example of some affected code:

  type Foo = [
    value: any,
    readonly?: boolean, // This is now parsed correctly
  ]

• Add CSS prefixes for the stretch sizing value (#4184)

  This release adds support for prefixing CSS declarations such as div { width: stretch }. That CSS is now transformed into this depending on what the --target= setting includes:

  div {
    width: -webkit-fill-available;
    width: -moz-available;
    width: stretch;
  }

Changelog

Sourced from esbuild's changelog.

0.25.5

• Fix a regression with browser in package.json (#4187)

  The fix to #4144 in version 0.25.3 introduced a regression that caused browser overrides specified in package.json to fail to override relative path names that end in a trailing slash. That behavior change affected the axios@0.30.0 package. This regression has been fixed, and now has test coverage.

• Add support for certain keywords as TypeScript tuple labels (#4192)

  Previously esbuild could incorrectly fail to parse certain keywords as TypeScript tuple labels that are parsed by the official TypeScript compiler if they were followed by a ? modifier. These labels included function, import, infer, new, readonly, and typeof. With this release, these keywords will now be parsed correctly. Here's an example of some affected code:

  type Foo = [
    value: any,
    readonly?: boolean, // This is now parsed correctly
  ]

• Add CSS prefixes for the stretch sizing value (#4184)

  This release adds support for prefixing CSS declarations such as div { width: stretch }. That CSS is now transformed into this depending on what the --target= setting includes:

  div {
    width: -webkit-fill-available;
    width: -moz-available;
    width: stretch;
  }

Commits

• ea453bf publish 0.25.5 to npm
• 223ddc6 fix #4187: browser package.json regression
• b2c8251 fix #4192: typescript tuple label parser edge case
• 28cf2f3 fix #4184: css prefixes for stretch
• bee1b09 fix comment indents
• 9ddfe5f run make update-compat-table
• c339f34 fix a misplaced comment
• See full diff in compare view

Updates mocha from 11.4.0 to 11.5.0

Release notes

Sourced from mocha's releases.

v11.5.0

11.5.0 (2025-05-22)

🌟 Features

• bump mimimatch from ^5.1.6 to ^9.0.5 (#5349) (a3dea85)

Changelog

Sourced from mocha's changelog.

11.5.0 (2025-05-22)

🌟 Features

• bump mimimatch from ^5.1.6 to ^9.0.5 (#5349) (a3dea85)

Commits

• a7ed005 chore(main): release 11.5.0 (#5370)
• a3dea85 feat: bump mimimatch from ^5.1.6 to ^9.0.5 (#5349)
• See full diff in compare view

Updates msw from 2.8.4 to 2.8.5

Release notes

Sourced from msw's releases.

v2.8.5 (2025-05-27)

Bug Fixes

• HttpResponse: strictly annotate all response methods (#2509) (2cdc2b1d4436e600f00a54568ae5999a0dc97b77) @​kettanaito
• update @mswjs/interceptors to 0.38.7 (#2508) (b06fd0e83af70a94303489062de7a5c49fb80ae7) @​kettanaito

Commits

• 0fbaedc chore(release): v2.8.5
• 2cdc2b1 fix(HttpResponse): strictly annotate all response methods (#2509)
• b06fd0e fix: update @mswjs/interceptors to 0.38.7 (#2508)
• 2692803 test(ts): add request handler type regression test (#2502)
• See full diff in compare view

Updates typescript-eslint from 8.32.1 to 8.33.0

Release notes

Sourced from typescript-eslint's releases.

v8.33.0

8.33.0 (2025-05-26)

🚀 Features

• create standalone project-service, tsconfig-utils packages (#11182)

❤️ Thank You

• Josh Goldberg ✨

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from typescript-eslint's changelog.

8.33.0 (2025-05-26)

This was a version bump only for typescript-eslint to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

Commits

• dca57b3 chore(release): publish 8.33.0
• f9e0eb9 chore: clean up nx and other config (#11226)
• 1c0e1ae chore: update some package scripts and dependency config (#10765)
• 8f79ad0 chore(typescript-eslint): finish migrating to vitest (#11137)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions