Bump semver, core-js-compat and eslint-plugin-node

[dependabot]

Bumps semver to 6.3.1 and updates ancestor dependencies semver, core-js-compat and eslint-plugin-node. These dependencies need to be updated together.

Updates semver from 6.3.0 to 6.3.1

Release notes

Sourced from semver's releases.

v6.3.1

6.3.1 (2023-07-10)

Bug Fixes

• 928e56d #591 better handling of whitespace (#591) (@​lukekarrys, @​joaomoreno, @​nicolo-ribaudo)

Changelog

Sourced from semver's changelog.

6.3.1 (2023-07-10)

Bug Fixes

• 928e56d #591 better handling of whitespace (#591) (@​lukekarrys, @​joaomoreno, @​nicolo-ribaudo)

6.2.0

• Coerce numbers to strings when passed to semver.coerce()
• Add rtl option to coerce from right to left

6.1.3

• Handle X-ranges properly in includePrerelease mode

6.1.2

• Do not throw when testing invalid version strings

6.1.1

• Add options support for semver.coerce()
• Handle undefined version passed to Range.test

6.1.0

• Add semver.compareBuild function
• Support * in semver.intersects

6.0

• Fix intersects logic.

  This is technically a bug fix, but since it is also a change to behavior that may require users updating their code, it is marked as a major version increment.

5.7

• Add minVersion method

5.6

• Move boolean loose param to an options object, with backwards-compatibility protection.
• Add ability to opt out of special prerelease version handling with the includePrerelease option flag.

5.5

... (truncated)

Commits

• 44d27bc chore: release 6.3.1
• 928e56d fix: better handling of whitespace (#591)
• 39f6326 chore: @​npmcli/template-oss@​4.16.0
• See full diff in compare view

Maintainer changes

This version was pushed to npm by lukekarrys, a new releaser for semver since your current version.

Updates semver from 5.7.1 to 5.7.2

Release notes

Sourced from semver's releases.

v6.3.1

6.3.1 (2023-07-10)

Bug Fixes

• 928e56d #591 better handling of whitespace (#591) (@​lukekarrys, @​joaomoreno, @​nicolo-ribaudo)

Changelog

Sourced from semver's changelog.

6.3.1 (2023-07-10)

Bug Fixes

• 928e56d #591 better handling of whitespace (#591) (@​lukekarrys, @​joaomoreno, @​nicolo-ribaudo)

6.2.0

• Coerce numbers to strings when passed to semver.coerce()
• Add rtl option to coerce from right to left

6.1.3

• Handle X-ranges properly in includePrerelease mode

6.1.2

• Do not throw when testing invalid version strings

6.1.1

• Add options support for semver.coerce()
• Handle undefined version passed to Range.test

6.1.0

• Add semver.compareBuild function
• Support * in semver.intersects

6.0

• Fix intersects logic.

  This is technically a bug fix, but since it is also a change to behavior that may require users updating their code, it is marked as a major version increment.

5.7

• Add minVersion method

5.6

• Move boolean loose param to an options object, with backwards-compatibility protection.
• Add ability to opt out of special prerelease version handling with the includePrerelease option flag.

5.5

... (truncated)

Commits

• 44d27bc chore: release 6.3.1
• 928e56d fix: better handling of whitespace (#591)
• 39f6326 chore: @​npmcli/template-oss@​4.16.0
• See full diff in compare view

Maintainer changes

This version was pushed to npm by lukekarrys, a new releaser for semver since your current version.

Updates semver from 7.3.5 to 7.7.3

Release notes

Sourced from semver's releases.

v6.3.1

6.3.1 (2023-07-10)

Bug Fixes

• 928e56d #591 better handling of whitespace (#591) (@​lukekarrys, @​joaomoreno, @​nicolo-ribaudo)

Changelog

Sourced from semver's changelog.

6.3.1 (2023-07-10)

Bug Fixes

• 928e56d #591 better handling of whitespace (#591) (@​lukekarrys, @​joaomoreno, @​nicolo-ribaudo)

6.2.0

• Coerce numbers to strings when passed to semver.coerce()
• Add rtl option to coerce from right to left

6.1.3

• Handle X-ranges properly in includePrerelease mode

6.1.2

• Do not throw when testing invalid version strings

6.1.1

• Add options support for semver.coerce()
• Handle undefined version passed to Range.test

6.1.0

• Add semver.compareBuild function
• Support * in semver.intersects

6.0

• Fix intersects logic.

  This is technically a bug fix, but since it is also a change to behavior that may require users updating their code, it is marked as a major version increment.

5.7

• Add minVersion method

5.6

• Move boolean loose param to an options object, with backwards-compatibility protection.
• Add ability to opt out of special prerelease version handling with the includePrerelease option flag.

5.5

... (truncated)

Commits

• 44d27bc chore: release 6.3.1
• 928e56d fix: better handling of whitespace (#591)
• 39f6326 chore: @​npmcli/template-oss@​4.16.0
• See full diff in compare view

Maintainer changes

This version was pushed to npm by lukekarrys, a new releaser for semver since your current version.

Updates core-js-compat from 3.21.1 to 3.48.0

Changelog

Sourced from core-js-compat's changelog.

3.48.0 - 2026.01.21

• Changes v3.47.0...v3.48.0 (126 commits)
• Map upsert proposal:
  • Built-ins:
    • Map.prototype.getOrInsert
    • Map.prototype.getOrInsertComputed
    • WeakMap.prototype.getOrInsert
    • WeakMap.prototype.getOrInsertComputed
  • Moved to stable ES, January 2026 TC39 meeting
  • Added es. namespace modules, /es/ and /stable/ namespaces entries
• Use CreateDataProperty / CreateDataPropertyOrThrow in some missed cases, #1497
• Minor fix / optimization in the RegExp constructor (NCG and dotAll) polyfill
• Added some more workarounds for a Safari < 13 bug with silent ignore of non-writable array .length
• Added detection of a Webkit bug: Iterator.prototype.flatMap throws on iterator without return method
• Added detection of a V8 ~ Chromium < 144 bug: Uint8Array.prototype.setFromHex throws an error on length-tracking views over ResizableArrayBuffer
• Compat data improvements:
  • Map upsert proposal features marked as shipped in V8 ~ Chrome 145
  • Joint iteration proposal features marked as shipped in FF148
  • Iterator.concat marked as shipped in Bun 1.3.7
  • Added Rhino 1.9.0 compat data
  • Added Deno 2.6 compat data mapping
  • Added Opera Android 93 and 94 compat data mapping
  • Added Electron 41 compat data mapping
  • Iterator.prototype.flatMap marked as supported from Safari 26.2 and Bun 1.2.21 because of a bug: throws on iterator without return method
  • Uint8Array.prototype.setFromHex marked as supported from V8 ~ Chromium 144 because of a bug: throws an error on length-tracking views over ResizableArrayBuffer

3.47.0 - 2025.11.18

• Changes v3.46.0...v3.47.0 (117 commits)
• JSON.parse source text access proposal:
  • Built-ins:
    • JSON.isRawJSON
    • JSON.parse
    • JSON.rawJSON
    • JSON.stringify
  • Moved to stable ES, November 2025 TC39 meeting
  • Added es. namespace modules, /es/ and /stable/ namespaces entries
  • Reworked JSON.stringify internals
• Iterator sequencing proposal:
  • Built-ins:
    • Iterator.concat
  • Moved to stable ES, November 2025 TC39 meeting
  • Added es. namespace modules, /es/ and /stable/ namespaces entries
• Joint iteration proposal:
  • Built-ins:
    • Iterator.zip
    • Iterator.zipKeyed
  • Moved to stage 3, November 2025 TC39 meeting
  • Added /actual/ namespace entries, unconditional forced replacement changed to feature detection
• Fixed increasing .size in URLSearchParams.prototype.append polyfill in IE8-
• Compat data improvements:

... (truncated)

Commits

• 5d657da v3.48.0
• 5644e73 Add bug detection for Uint8Array.prototype.setFromHex
• 804a10e Merge pull request #1501 from zloirock/flat-map-fix
• 45d7fe3 Add bug detection to Iterator flatMap method
• efd9c2f move Map upsert proposal to stable ES
• a391a3b update Electron 41 compat data mapping
• 6cb9a08 mark Iterator.concat as shipped in Bun 1.3.7
• bcbab70 add Opera Android 94 compat data mapping
• 91c8a37 add Electron 41 compat data mapping
• 6808866 add Rhino 1.9.0 compat data
• Additional commits viewable in compare view

Updates eslint-plugin-node from 4.2.3 to 11.1.0

Release notes

Sourced from eslint-plugin-node's releases.

v11.1.0

The many rules for Node.js in the ESLint core will be deprecated in ESLint 7.0.0. This release includes the clone of those core rules.

✨ Enhancements

• 8788a11e01904f394b6c438dcb218704d449c09c added ten rules from the ESLint core:
  • node/callback-return rule that corresponds to callback-return rule.
  • node/global-require rule that corresponds to global-require rule.
  • node/handle-callback-err rule that corresponds to handle-callback-err rule.
  • node/no-mixed-requires rule that corresponds to no-mixed-requires rule.
  • node/no-new-require rule that corresponds to no-new-require rule.
  • node/no-path-concat rule that corresponds to no-path-concat rule, plus this recognizes template literals as well.
  • node/no-process-env rule that corresponds to no-process-env rule.
  • node/no-process-exit rule that corresponds to no-process-exit rule.
  • node/no-restricted-require rule that corresponds to no-restricted-modules rule, but this has simplified options.
  • node/no-sync rule that corresponds to no-sync rule.
• ade0b59b3bdb8671196eb5b51fdab28acc87800b added node/no-restricted-import rule that is ES modules version of node/no-restricted-require rule.

v11.0.0

💥 Breaking changes

• b6cb9a071a7177ad625cde07541b9d2f31aab35b updated node/no-unsupported-features/node-builtins rule based on Node.js 13.2.0.
• fb9ce15fb6d465f2cead242a5daae2599ce90142 updated node/no-unsupported-features/es-syntax rule to recognize BigInt literal property names.
• 4295f6a45635ab61c53a8d51c19e1858a208492d updated the rules that check global variables to recognize globalThis.*.
• 04051edfe3aa8cdb9f1aa87bbd4130021f767174 updated node/no-unsupported-features/es-builtins rule to recognize globalThis.

✨ Enhancements

... (truncated)

Commits

• 4a348e7 🔖 11.1.0
• 7dc8f80 📝 fix rule names in documentation
• e2da592 ⚒ improve no-path-concat
• ade0b59 ✨ add no-restricted-import
• 578110e ⚒ simplify the options of no-restricted-require
• 8788a11 Update: add ESLint core Node.js and CommonJS rules (#206)
• b8f9945 🔖 11.0.0
• 04051ed 💥 update node/no-unsupported-features/es-builtins to recognize globalThis
• 4295f6a 💥 update rules to check globalThis.*
• a5f3ab2 revert ESM support versions
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.