chore(deps): update dependency postcss to v8.4.31 [security]

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
postcss (source)	8.4.16 -> 8.4.31

GitHub Vulnerability Alerts

CVE-2023-44270

An issue was discovered in PostCSS before 8.4.31. It affects linters using PostCSS to parse external Cascading Style Sheets (CSS). There may be \r discrepancies, as demonstrated by @font-face{ font:(\r/*);} in a rule.

This vulnerability affects linters using PostCSS to parse external untrusted CSS. An attacker can prepare CSS in such a way that it will contains parts parsed by PostCSS as a CSS comment. After processing by PostCSS, it will be included in the PostCSS output in CSS nodes (rules, properties) despite being originally included in a comment.

---

Release Notes

postcss/postcss (postcss)

v8.4.31

Compare Source

• Fixed \r parsing to fix CVE-2023-44270.

v8.4.30

Compare Source

• Improved source map performance (by Romain Menke).

v8.4.29

Compare Source

• Fixed Node#source.offset (by Ido Rosenthal).
• Fixed docs (by Christian Oliff).

v8.4.28

Compare Source

• Fixed Root.source.end for better source map (by Romain Menke).
• Fixed Result.root types when process() has no parser.

v8.4.27

Compare Source

• Fixed Container clone methods types.

v8.4.26

Compare Source

• Fixed clone methods types.

v8.4.25

Compare Source

• Improve stringify performance (by Romain Menke).
• Fixed docs (by @​vikaskaliramna07).

v8.4.24

Compare Source

• Fixed Plugin types.

v8.4.23

Compare Source

• Fixed warnings in TypeDoc.

v8.4.22

Compare Source

• Fixed TypeScript support with node16 (by Remco Haszing).

v8.4.21

Compare Source

• Fixed Input#error types (by Aleks Hudochenkov).

v8.4.20

Compare Source

• Fixed source map generation for childless at-rules like @layer.

v8.4.19

Compare Source

• Fixed whitespace preserving after AST transformations (by Romain Menke).

v8.4.18

Compare Source

• Fixed an error on absolute: true with empty sourceContent (by Rene Haas).

v8.4.17

Compare Source

• Fixed Node.before() unexpected behavior (by Romain Menke).
• Added TOC to docs (by Mikhail Dedov).

---

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
elucidate-frontend	❌ Failed (Inspect)			Oct 7, 2023 4:36am

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 7.14%. Comparing base (b56d674) to head (59b2891).

❗ There is a different number of reports uploaded between BASE (b56d674) and HEAD (59b2891). Click for more details.

HEAD has 1 upload less than BASE

Flag	BASE (b56d674)	HEAD (59b2891)
backend	1	0

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #219       +/-   ##
==========================================
- Coverage   83.31%   7.14%   -76.18%     
==========================================
  Files          47      36       -11     
  Lines        1139      42     -1097     
  Branches        0      14       +14     
==========================================
- Hits          949       3      -946     
+ Misses        190      39      -151     

Flag	Coverage Δ
backend	?
frontend	7.14% <ø> (?)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.