Bump tsup from 6.5.0 to 6.7.0

[dependabot]

Bumps tsup from 6.5.0 to 6.7.0.

Release notes

Sourced from tsup's releases.

v6.7.0

6.7.0 (2023-03-19)

Features

• add function type for options.injectStyle (#855) (01169b3)
• support typescript 5.0 (#859) (3e15867)

v6.6.3

6.6.3 (2023-02-14)

Bug Fixes

• raise node engine requirement to 14.18 (#832) (49cde79), closes #825
• upgrade rollup-plugin-dts for better watch mode support (#836) (2ad00aa)

v6.6.2

6.6.2 (2023-02-12)

Bug Fixes

• upgrade tsup (a4df971)

v6.6.1

6.6.1 (2023-02-12)

Bug Fixes

• types: make sure enum starts with declare keyword (a85439d), closes #834

v6.6.0

6.6.0 (2023-02-07)

Bug Fixes

• add home page to package.json (#817) (2e73ca9)
• clean d.ts files if "dts" option is false (#747) (b107de0)
• default exports not working on CJS + treeshake: true (#815) (14ad4bd)
• search postcss config from current work dir (#773) (78432e2)
• use postMessage instead of console in worker thread (#779) (4cb1bc2)

Features

• Bump esbuild 0.15 -> 0.16 (#805) (904e07a)

... (truncated)

Commits

• 3e15867 feat: support typescript 5.0 (#859)
• 01169b3 feat: add function type for options.injectStyle (#855)
• 97f3abf chore(docs): using jsdelivr insted of unpkg (#838)
• 9639352 refactor(plugin-api): expose entryPoint and more info in chunkInfo
• 49cde79 fix: raise node engine requirement to 14.18 (#832)
• 2ad00aa fix: upgrade rollup-plugin-dts for better watch mode support (#836)
• a4df971 fix: upgrade tsup
• 70a586c chore: update lockfile
• a85439d fix(types): make sure enum starts with declare keyword
• 30ff79d feat: upgrade esbuild 0.16 -> 0.17
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[guardrails]

⚠️ We detected 9 security issues in this pull request:

Vulnerable Libraries (9)

Severity	Details
High	pkg:npm/http-cache-semantics@4.1.0@4.1.0 (t) upgrade to: 4.1.1,4.1.1
High	pkg:npm/core-js@3.26.1@3.26.1 (t) - no patch available
High	pkg:npm/cacheable-request@10.2.2@10.2.2 (t) upgrade to: 10.2.7
Medium	pkg:npm/word-wrap@1.2.3@1.2.3 (t) - no patch available
High	pkg:npm/cacheable-request@6.1.0@6.1.0 (t) upgrade to: 10.2.7
N/A	pkg:npm/yaml@1.10.2@1.10.2 (t) upgrade to: 2.2.2
High	pkg:npm/cacheable-request@7.0.2@7.0.2 (t) upgrade to: 10.2.7
Medium	pkg:npm/got@9.6.0@9.6.0 (t) - no patch available
Medium	pkg:npm/got@10.7.0@10.7.0 (t) - no patch available

More info on how to fix Vulnerable Libraries in JavaScript.

---

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.