chore(deps): bump slidev-addon-window-mockup from 0.3.0 to 0.3.1

[dependabot]

Bumps slidev-addon-window-mockup from 0.3.0 to 0.3.1.

Release notes

Sourced from slidev-addon-window-mockup's releases.

v0.3.1

Patch Changes

• #74 04ee456 Thanks @​whitphx! - Refresh transitive js-yaml from 3.14.1 to the patched 3.14.2, clearing prototype-pollution advisory GHSA-mh29-5h37-fv8m reported by the dependency review workflow.

• #74 fae54ce Thanks @​whitphx! - Refresh pnpm-lock.yaml to deduplicate transitive vite resolutions onto a single patched version, clearing three security advisories (GHSA-p9ff-h696-f583, GHSA-v2wj-q39q-566r, GHSA-4w7w-66w2-5vf9).

• #74 7f1ff61 Thanks @​whitphx! - Migrate dev tooling from ESLint + Prettier to the Oxc toolchain (oxlint

  • oxfmt) and enable oxlint's type-aware linting. No changes to the published runtime behavior.

• #74 1251504 Thanks @​whitphx! - Pin transitive dompurify to >=3.4.0 via a pnpm override so monaco-editor's pinned [email protected] is replaced with a patched release, clearing five security advisories (GHSA-v2wj-7wpq-c8vv, GHSA-h8r8-wccr-v5f2, GHSA-cj63-jhhr-wcxv, GHSA-cjmm-f4jc-qw8r, GHSA-39q2-94rc-95cp).

Changelog

Sourced from slidev-addon-window-mockup's changelog.

0.3.1

Patch Changes

• #74 04ee456 Thanks @​whitphx! - Refresh transitive js-yaml from 3.14.1 to the patched 3.14.2, clearing prototype-pollution advisory GHSA-mh29-5h37-fv8m reported by the dependency review workflow.

• #74 fae54ce Thanks @​whitphx! - Refresh pnpm-lock.yaml to deduplicate transitive vite resolutions onto a single patched version, clearing three security advisories (GHSA-p9ff-h696-f583, GHSA-v2wj-q39q-566r, GHSA-4w7w-66w2-5vf9).

• #74 7f1ff61 Thanks @​whitphx! - Migrate dev tooling from ESLint + Prettier to the Oxc toolchain (oxlint

  • oxfmt) and enable oxlint's type-aware linting. No changes to the published runtime behavior.

• #74 1251504 Thanks @​whitphx! - Pin transitive dompurify to >=3.4.0 via a pnpm override so monaco-editor's pinned [email protected] is replaced with a patched release, clearing five security advisories (GHSA-v2wj-7wpq-c8vv, GHSA-h8r8-wccr-v5f2, GHSA-cj63-jhhr-wcxv, GHSA-cjmm-f4jc-qw8r, GHSA-39q2-94rc-95cp).

Commits

• 26aa836 Version Packages (#78)
• 553fe1d Merge pull request #75 from whitphx/dependabot/npm_and_yarn/npm_and_yarn-bfbd...
• f9d79db Merge pull request #76 from whitphx/dev/npm-upgrade-workaround-promise-retry
• e8e9fe5 Merge pull request #77 from whitphx/dev/lintstaged-yaml
• 938e428 Configure lint-staged to trigger formatter on yaml files
• 3445808 Fix a bug on upgrading npm
• 78a6747 Bump the npm_and_yarn group across 1 directory with 4 updates
• c02e3cc Merge pull request #74 from whitphx/dev/migrate-to-oxc-toolchain
• 04ee456 chore(deps): Bump transitive js-yaml to 3.14.2 for security
• 86ad239 style: Reorder package.json fields to satisfy oxfmt
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)