From 15de81b15a1dedc525d452b295172b94b588f95a Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Wed, 19 Nov 2025 08:52:04 +0000
Subject: [PATCH 1/3] chore(deps): update dependency roarr to v5

---
 package.json   |  4 ++--
 pnpm-lock.yaml | 63 ++++++++++++++++++++++++++++++++++++++------------
 2 files changed, 50 insertions(+), 17 deletions(-)

diff --git a/package.json b/package.json
index b4d29b29b8..c49ca59846 100644
--- a/package.json
+++ b/package.json
@@ -384,7 +384,7 @@
     "responselike": "4.0.2",
     "retry": "0.13.1",
     "retry-as-promised": "7.1.1",
-    "roarr": "2.15.4",
+    "roarr": "5.0.0",
     "safe-buffer": "5.2.1",
     "safer-buffer": "2.1.2",
     "sax": "1.4.3",
@@ -826,7 +826,7 @@
       "responselike": "4.0.2",
       "retry": "0.13.1",
       "retry-as-promised": "7.1.1",
-      "roarr": "2.15.4",
+      "roarr": "5.0.0",
       "safe-buffer": "5.2.1",
       "safer-buffer": "2.1.2",
       "sax": "1.4.3",
diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
index ffd3b086c0..d2eac79766 100644
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
@@ -276,7 +276,7 @@ overrides:
   responselike: 4.0.2
   retry: 0.13.1
   retry-as-promised: 7.1.1
-  roarr: 2.15.4
+  roarr: 5.0.0
   safe-buffer: 5.2.1
   safer-buffer: 2.1.2
   sax: 1.4.3
@@ -356,8 +356,6 @@ overrides:
   yargs-parser: 22.0.0
   yoctocolors: 2.1.2
 
-pnpmfileChecksum: sha256-nfOeuxPm0PLhmHqhdzVKpjFk27e1GEgHAqcQJ7ot+gg=
-
 importers:
 
   .:
@@ -739,7 +737,6 @@ packages:
     resolution: {integrity: sha512-AWLQ33x/mUtYLfIfCq8tZ8TykXUzzNo6ZLvf1eOmEeEyYw/9Yx6E7KzzaAakGl886lJW/1gzmhvFPXD+ZKEIpA==}
     cpu: [ppc64]
     os: [linux]
-    libc: glibc
 
   '@cyclonedx/cdxgen-plugins-bin-linuxmusl-amd64@1.7.0':
     resolution: {integrity: sha512-miYABkiNS+0m0z9L5lfIyiAQezuYthkzzPqX6DgPeMgFT8SfoUng2dtRzkCPLtCUBj8lMyBntXTjZrmH7QOMoA==}
@@ -1061,6 +1058,10 @@ packages:
     resolution: {integrity: sha512-LOHxIOaPYdHlJRtCQfDIVZtfw/ufM8+rVj649RIHzcm/vGwQRXFt6OPqIFWsm2XEMrNIEtWR64sY1LEKD2vAOA==}
     engines: {node: '>=4.0.0'}
 
+  deepmerge@4.3.1:
+    resolution: {integrity: sha512-3sUqbMEc77XqpdNO7FRyRog+eW3ph+GYCbj+rK+uYyRMuwsVy0rMiVtPn+QJlKFvWP/1PYpapqYn0Me2knFn+A==}
+    engines: {node: '>=0.10.0'}
+
   define-data-property@1.1.4:
     resolution: {integrity: sha512-rBMvIzlpA8v6E+SJZoo++HAYqsLrkg7MSfIinMPFhmkorw7X+dOXVJQs+QT69zGkzMyfDnIMN2Wid1+NbL3T+A==}
     engines: {node: '>= 0.4'}
@@ -1176,6 +1177,14 @@ packages:
   fast-fifo@1.3.2:
     resolution: {integrity: sha512-/d9sfos4yxzpwkDkuN7k2SqFKtYNmCTzgfEpz82x34IM9/zc8KGxQoXg1liNC/izpRM/MBdt44Nmx41ZWqk+FQ==}
 
+  fast-json-stringify@2.7.13:
+    resolution: {integrity: sha512-ar+hQ4+OIurUGjSJD1anvYSDcUflywhKjfxnsW4TBTD7+u0tJufv6DKRWoQk3vI6YBOWMoz0TQtfbe7dxbQmvA==}
+    engines: {node: '>= 10.0.0'}
+
+  fast-printf@1.6.10:
+    resolution: {integrity: sha512-GwTgG9O4FVIdShhbVF3JxOgSBY2+ePGsu2V/UONgoCPzF9VY6ZdBMKsHKCYQHZwNk3qNouUolRDsgVxcVA5G1w==}
+    engines: {node: '>=10.0'}
+
   fast-uri@3.1.0:
     resolution: {integrity: sha512-iPeeDKJSWf4IEOasVVrknXpaBV0IApz/gp7S2bb7Z4Lljbl2MGJRqInZiUrQwV16cpzw/D3S5j5Julj/gT52AA==}
 
@@ -1318,6 +1327,9 @@ packages:
     resolution: {integrity: sha512-XXADHxXmvT9+CRxhXg56LJovE+bmWnEWB78LB83VZTprKTmaC5QfruXocxzTZ2Kl0DNwKuBdlIhjL8LeY8Sf8Q==}
     engines: {node: '>= 12'}
 
+  is-circular@1.0.2:
+    resolution: {integrity: sha512-YttjnrswnUYRVJvxCvu8z+PGMUSzC2JttP0OEXezlAEdp3EXzhf7IZ3j0gRAybJBQupedIZFhY61Tga6E0qASA==}
+
   is-fullwidth-code-point@5.1.0:
     resolution: {integrity: sha512-5XHYaSyiqADb4RnZ1Bdad6cPp8Toise4TzEjcOYDHZkTCbKgiUl7WTUCpNWHuxmDt91wnsZBc9xinNzopv3JMQ==}
     engines: {node: '>=18'}
@@ -1676,9 +1688,12 @@ packages:
     resolution: {integrity: sha512-XQBQ3I8W1Cge0Seh+6gjj03LbmRFWuoszgK9ooCpwYIrhhoO80pfq4cUkU5DkknwfOfFteRwlZ56PYOGYyFWdg==}
     engines: {node: '>= 4'}
 
-  roarr@2.15.4:
-    resolution: {integrity: sha512-CHhPh+UNHD2GTXNYhPWLnU8ONHdI+5DI+4EYIAOaiD63rHeYlZvyh8P+in5999TTSFgUYuKUAjzRI4mdh/p+2A==}
-    engines: {node: '>=8.0'}
+  rfdc@1.4.1:
+    resolution: {integrity: sha512-q1b3N5QkRUWUl7iyylaaj3kOpIT0N2i9MqIEQXP73GVsN9cw3fdx8X63cEmWhJGi2PPCF23Ijp7ktmd39rawIA==}
+
+  roarr@5.0.0:
+    resolution: {integrity: sha512-sFFGdGC1L0S7HE8wrwDMNKLhMoSSIc2/56uebdbbZeTWUTVskkGBCFbdU1n3OawayzCm2gxf3UWCIXf5Y0qghg==}
+    engines: {node: '>=12.0'}
 
   safe-buffer@5.2.1:
     resolution: {integrity: sha512-rp3So07KcdmmKbGvgaNxQSJr7bGVSVk5S9Eq1F+ppbRo70+YeaDxkw5Dd8NPN+GD6bjnYm2VuPuCXmpuYvmCXQ==}
@@ -1803,9 +1818,6 @@ packages:
   spdx-license-ids@3.0.22:
     resolution: {integrity: sha512-4PRT4nh1EImPbt2jASOKHX7PB7I+e4IWNLvkKFDxNhJlfjbYlleYQh285Z/3mPTHSAK/AvdMmw5BNNuYH8ShgQ==}
 
-  sprintf-js@1.1.3:
-    resolution: {integrity: sha512-Oo+0REFV59/rz3gfJNKQiBlwfHaSESl1pcGyABQsnnIfWOFt6JNj5gCog2U6MLZ//IGYD+nA8nI+mTShREReaA==}
-
   ssri@13.0.0:
     resolution: {integrity: sha512-yizwGBpbCn4YomB2lzhZqrHLJoqFGXihNbib3ozhqF/cIp5ue+xSmOQrjNasEE62hFxsCcg/V/z23t4n8jMEng==}
     engines: {node: ^20.17.0 || >=22.9.0}
@@ -1817,6 +1829,10 @@ packages:
   streamx@2.23.0:
     resolution: {integrity: sha512-kn+e44esVfn2Fa/O0CPFcex27fjIL6MkVae0Mm6q+E6f0hWv578YCERbv+4m02cjxvDsPKLnmxral/rR6lBMAg==}
 
+  string-similarity@4.0.4:
+    resolution: {integrity: sha512-/q/8Q4Bl4ZKAPjj8WerIBJWALKkaPRfrvhfF8k/B23i4nzrlRj2/go1m90In7nG/3XDSbOo0+pu6RvCTM9RGMQ==}
+    deprecated: Package no longer supported. Contact Support at https://www.npmjs.com/support for more info.
+
   string-width@8.1.0:
     resolution: {integrity: sha512-Kxl3KJGb/gxkaUMOjRsQ8IrXiGW75O4E3RPjFIINOVH8AMl2SQ/yWdTzWwF3FevIX9LcMAjJW+GRwAlAbTSXdg==}
     engines: {node: '>=20'}
@@ -2498,6 +2514,8 @@ snapshots:
   deep-extend@0.6.0:
     optional: true
 
+  deepmerge@4.3.1: {}
+
   define-data-property@1.1.4:
     dependencies:
       es-define-property: 1.0.1
@@ -2615,6 +2633,15 @@ snapshots:
   fast-fifo@1.3.2:
     optional: true
 
+  fast-json-stringify@2.7.13:
+    dependencies:
+      ajv: 8.17.1
+      deepmerge: 4.3.1
+      rfdc: 1.4.1
+      string-similarity: 4.0.4
+
+  fast-printf@1.6.10: {}
+
   fast-uri@3.1.0: {}
 
   fdir@6.5.0(picomatch@4.0.3):
@@ -2698,7 +2725,7 @@ snapshots:
       boolean: 3.2.0
       es6-error: 4.1.1
       matcher: 6.0.0
-      roarr: 2.15.4
+      roarr: 5.0.0
       semver: 7.7.3
       serialize-error: 12.0.0
 
@@ -2799,6 +2826,8 @@ snapshots:
   ip-address@10.1.0:
     optional: true
 
+  is-circular@1.0.2: {}
+
   is-fullwidth-code-point@5.1.0:
     dependencies:
       get-east-asian-width: 1.4.0
@@ -3174,14 +3203,18 @@ snapshots:
 
   retry@0.13.1: {}
 
-  roarr@2.15.4:
+  rfdc@1.4.1: {}
+
+  roarr@5.0.0:
     dependencies:
       boolean: 3.2.0
       detect-node: 2.1.0
+      fast-json-stringify: 2.7.13
+      fast-printf: 1.6.10
       globalthis: 1.0.4
+      is-circular: 1.0.2
       json-stringify-safe: 5.0.1
       semver-compare: 1.0.0
-      sprintf-js: 1.1.3
 
   safe-buffer@5.2.1: {}
 
@@ -3314,8 +3347,6 @@ snapshots:
 
   spdx-license-ids@3.0.22: {}
 
-  sprintf-js@1.1.3: {}
-
   ssri@13.0.0:
     dependencies:
       minipass: 7.1.2
@@ -3333,6 +3364,8 @@ snapshots:
       - react-native-b4a
     optional: true
 
+  string-similarity@4.0.4: {}
+
   string-width@8.1.0:
     dependencies:
       get-east-asian-width: 1.4.0

From 408faa8b391e4231dab4ac0256f2a7c4fee5c8a7 Mon Sep 17 00:00:00 2001
From: github-actions <41898282+github-actions[bot]@users.noreply.github.com>
Date: Wed, 19 Nov 2025 08:52:24 +0000
Subject: [PATCH 2/3] Fixed pnpm-lock after renovate update

Signed-off-by: github-actions <41898282+github-actions[bot]@users.noreply.github.com>
---
 pnpm-lock.yaml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
index d2eac79766..611cb8fa7c 100644
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
@@ -356,6 +356,8 @@ overrides:
   yargs-parser: 22.0.0
   yoctocolors: 2.1.2
 
+pnpmfileChecksum: sha256-nfOeuxPm0PLhmHqhdzVKpjFk27e1GEgHAqcQJ7ot+gg=
+
 importers:
 
   .:
@@ -737,6 +739,7 @@ packages:
     resolution: {integrity: sha512-AWLQ33x/mUtYLfIfCq8tZ8TykXUzzNo6ZLvf1eOmEeEyYw/9Yx6E7KzzaAakGl886lJW/1gzmhvFPXD+ZKEIpA==}
     cpu: [ppc64]
     os: [linux]
+    libc: glibc
 
   '@cyclonedx/cdxgen-plugins-bin-linuxmusl-amd64@1.7.0':
     resolution: {integrity: sha512-miYABkiNS+0m0z9L5lfIyiAQezuYthkzzPqX6DgPeMgFT8SfoUng2dtRzkCPLtCUBj8lMyBntXTjZrmH7QOMoA==}

From 30da73e35305ec1cae8567fd4cd87864b6e80b21 Mon Sep 17 00:00:00 2001
From: Roland Asmann <roland.asmann@gmail.com>
Date: Wed, 19 Nov 2025 10:10:57 +0100
Subject: [PATCH 3/3] Fixed transitive & obsolete dependencies

Signed-off-by: Roland Asmann <roland.asmann@gmail.com>
---
 package.json   | 14 ++++++++++++--
 pnpm-lock.yaml |  7 ++++++-
 2 files changed, 18 insertions(+), 3 deletions(-)

diff --git a/package.json b/package.json
index c49ca59846..2bb3a5cbb7 100644
--- a/package.json
+++ b/package.json
@@ -219,6 +219,7 @@
     "debug": "4.4.3",
     "decompress-response": "10.0.0",
     "deep-extend": "0.6.0",
+    "deepmerge": "4.3.1",
     "define-data-property": "1.1.4",
     "define-properties": "1.2.1",
     "depd": "2.0.0",
@@ -252,6 +253,8 @@
     "exponential-backoff": "3.1.3",
     "fast-deep-equal": "3.1.3",
     "fast-fifo": "1.3.2",
+    "fast-json-stringify": "2.7.13",
+    "fast-printf": "1.6.10",
     "fast-uri": "3.1.0",
     "fdir": "6.5.0",
     "file-uri-to-path": "2.0.0",
@@ -288,6 +291,7 @@
     "inherits": "2.0.4",
     "ini": "6.0.0",
     "ip-address": "10.1.0",
+    "is-circular": "1.0.2",
     "is-fullwidth-code-point": "5.1.0",
     "is-stream": "4.0.1",
     "isexe": "3.1.1",
@@ -384,6 +388,7 @@
     "responselike": "4.0.2",
     "retry": "0.13.1",
     "retry-as-promised": "7.1.1",
+    "rfdc": "1.4.1",
     "roarr": "5.0.0",
     "safe-buffer": "5.2.1",
     "safer-buffer": "2.1.2",
@@ -411,11 +416,11 @@
     "spdx-exceptions": "2.5.0",
     "spdx-expression-parse": "4.0.0",
     "spdx-license-ids": "3.0.22",
-    "sprintf-js": "1.1.3",
     "sqlite3": "npm:@appthreat/sqlite3@6.0.9",
     "ssri": "13.0.0",
     "statuses": "2.0.2",
     "streamx": "2.23.0",
+    "string-similarity": "4.0.4",
     "string-width": "8.1.0",
     "string-width-cjs": "npm:string-width@8.1.0",
     "strip-ansi": "7.1.2",
@@ -661,6 +666,7 @@
       "debug": "4.4.3",
       "decompress-response": "10.0.0",
       "deep-extend": "0.6.0",
+      "deepmerge": "4.3.1",
       "define-data-property": "1.1.4",
       "define-properties": "1.2.1",
       "depd": "2.0.0",
@@ -694,6 +700,8 @@
       "exponential-backoff": "3.1.3",
       "fast-deep-equal": "3.1.3",
       "fast-fifo": "1.3.2",
+      "fast-json-stringify": "2.7.13",
+      "fast-printf": "1.6.10",
       "fast-uri": "3.1.0",
       "fdir": "6.5.0",
       "file-uri-to-path": "2.0.0",
@@ -730,6 +738,7 @@
       "inherits": "2.0.4",
       "ini": "6.0.0",
       "ip-address": "10.1.0",
+      "is-circular": "1.0.2",
       "is-fullwidth-code-point": "5.1.0",
       "is-stream": "4.0.1",
       "isexe": "3.1.1",
@@ -826,6 +835,7 @@
       "responselike": "4.0.2",
       "retry": "0.13.1",
       "retry-as-promised": "7.1.1",
+      "rfdc": "1.4.1",
       "roarr": "5.0.0",
       "safe-buffer": "5.2.1",
       "safer-buffer": "2.1.2",
@@ -853,11 +863,11 @@
       "spdx-exceptions": "2.5.0",
       "spdx-expression-parse": "4.0.0",
       "spdx-license-ids": "3.0.22",
-      "sprintf-js": "1.1.3",
       "sqlite3": "npm:@appthreat/sqlite3@6.0.9",
       "ssri": "13.0.0",
       "statuses": "2.0.2",
       "streamx": "2.23.0",
+      "string-similarity": "4.0.4",
       "string-width": "8.1.0",
       "string-width-cjs": "npm:string-width@8.1.0",
       "strip-ansi": "7.1.2",
diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
index 611cb8fa7c..b863520cd2 100644
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
@@ -111,6 +111,7 @@ overrides:
   debug: 4.4.3
   decompress-response: 10.0.0
   deep-extend: 0.6.0
+  deepmerge: 4.3.1
   define-data-property: 1.1.4
   define-properties: 1.2.1
   depd: 2.0.0
@@ -144,6 +145,8 @@ overrides:
   exponential-backoff: 3.1.3
   fast-deep-equal: 3.1.3
   fast-fifo: 1.3.2
+  fast-json-stringify: 2.7.13
+  fast-printf: 1.6.10
   fast-uri: 3.1.0
   fdir: 6.5.0
   file-uri-to-path: 2.0.0
@@ -180,6 +183,7 @@ overrides:
   inherits: 2.0.4
   ini: 6.0.0
   ip-address: 10.1.0
+  is-circular: 1.0.2
   is-fullwidth-code-point: 5.1.0
   is-stream: 4.0.1
   isexe: 3.1.1
@@ -276,6 +280,7 @@ overrides:
   responselike: 4.0.2
   retry: 0.13.1
   retry-as-promised: 7.1.1
+  rfdc: 1.4.1
   roarr: 5.0.0
   safe-buffer: 5.2.1
   safer-buffer: 2.1.2
@@ -303,11 +308,11 @@ overrides:
   spdx-exceptions: 2.5.0
   spdx-expression-parse: 4.0.0
   spdx-license-ids: 3.0.22
-  sprintf-js: 1.1.3
   sqlite3: npm:@appthreat/sqlite3@6.0.9
   ssri: 13.0.0
   statuses: 2.0.2
   streamx: 2.23.0
+  string-similarity: 4.0.4
   string-width: 8.1.0
   string-width-cjs: npm:string-width@8.1.0
   strip-ansi: 7.1.2