npm(deps): bump the prod-dependencies-major group across 1 directory with 7 updates

[dependabot]

Bumps the prod-dependencies-major group with 7 updates in the / directory:

Package	From	To
@types/node	22.13.8	25.1.0
chalk	4.1.2	5.6.2
commander	9.4.1	14.0.3
dotenv	16.4.5	17.2.3
fast-astar	1.0.6	2.0.0
node-html-markdown	1.3.0	2.0.0
node-html-parser	6.1.11	7.0.2

Updates @types/node from 22.13.8 to 25.1.0

Commits

• See full diff in compare view

Updates chalk from 4.1.2 to 5.6.2

Release notes

Sourced from chalk's releases.

v5.6.2

• Fix vulnerability in 5.6.1, see: chalk/chalk#656

v5.6.0

• Make WezTerm terminal use true color a8f5bf7

---

chalk/chalk@v5.5.0...v5.6.0

v5.5.0

• Make Ghostty terminal use true color (#653) 79ee2d3

---

chalk/chalk@v5.4.1...v5.5.0

v5.4.1

• Fix navigator not defined ReferenceError (#642) 4ebb62d

chalk/chalk@v5.4.0...v5.4.1

v5.4.0

• Update CIRCLECI environments to return level 3 color support f838120

chalk/chalk@v5.3.0...v5.4.0

v5.3.0

• Add sideEffects field to package.json 5aafc0a
• Add support for Gitea Actions (#603) 29b8569

chalk/chalk@v5.2.0...v5.3.0

v5.2.0

• Improve Deno compatibility (#579) 7443e9f
• Detect true-color support for GitHub Actions (#579) 7443e9f
• Detect true-color support for Kitty terminal (#579) 7443e9f
• Fix test for Azure DevOps environment (#579) 7443e9f

chalk/chalk@v5.1.2...v5.2.0

v5.1.2

• Fix exported styles names (#569) a34bcf6

chalk/chalk@v5.1.1...v5.1.2

v5.1.1

• Improved the names of exports introduced in 5.1.0 (#567) 6e0df05
  • We of course preserved the old names.

... (truncated)

Commits

• 5155778 5.6.2
• 5c91505 5.6.0
• a8f5bf7 Make WezTerm terminal use true color
• 67db246 5.5.0
• 79ee2d3 Make Ghostty terminal use true color (#653)
• 5dbc1e2 5.4.1
• 4ebb62d Fix navigator not defined ReferenceError (#642)
• fc809b6 Readme tweak
• 83acfcf 5.4.0
• f838120 Update CIRCLECI environments to return level 3 color support
• Additional commits viewable in compare view

Updates commander from 9.4.1 to 14.0.3

Release notes

Sourced from commander's releases.

v14.0.3

Added

• Release Policy document (#2462)

Changes

• old major versions now supported for 12 months instead of just previous major version, to give predictable end-of-life date (#2462)
• clarify typing for deprecated callback parameter to .outputHelp() (#2427)
• simple readability improvements to README (#2465)

v14.0.2

Changed

• improve negative number auto-detection test (#2428)
• update (dev) dependencies

v14.0.1

Fixed

• broken markdown link in README (#2369)

Changed

• improve code readability by using optional chaining (#2394)
• use more idiomatic code with object spread instead of Object.assign() (#2395)
• improve code readability using string.endsWith() instead of string.slice() (#2396)
• refactor .parseOptions() to process args array in-place (#2409)
• change private variadic support routines from ._concatValue() to ._collectValue() (change code from array.concat() to array.push()) (#2410)
• update (dev) dependencies

v14.0.0

Added

• support for groups of options and commands in the help using low-level .helpGroup() on Option and Command, and higher -level .optionsGroup() and .commandsGroup() which can be used in chaining way to specify group title for following option s/commands (#2328)
• support for unescaped negative numbers as option-arguments and command-arguments (#2339)
• TypeScript: add parseArg property to Argument class (#2359)

Fixed

• remove bogus leading space in help when option has default value but not a description (#2348)
• .configureOutput() now makes copy of settings instead of modifying in-place, fixing side-effects (#2350)

Changed

• Breaking: Commander 14 requires Node.js v20 or higher
• internal refactor of Help class adding .formatItemList() and .groupItems() methods (#2328)

... (truncated)

Changelog

Sourced from commander's changelog.

[14.0.3] (2026-01-31)

Added

• Release Policy document (#2462)

Changes

• old major versions now supported for 12 months instead of just previous major version, to give predictable end-of-life date (#2462)
• clarify typing for deprecated callback parameter to .outputHelp() (#2427)
• simple readability improvements to README (#2465)

[14.0.2] (2025-10-25)

Changed

• improve negative number auto-detection test (#2428)
• update (dev) dependencies

[14.0.1] (2025-09-12)

Fixed

• broken markdown link in README (#2369)

Changed

• improve code readability by using optional chaining (#2394)
• use more idiomatic code with object spread instead of Object.assign() (#2395)
• improve code readability using string.endsWith() instead of string.slice() (#2396)
• refactor .parseOptions() to process args array in-place (#2409)
• change private variadic support routines from ._concatValue() to ._collectValue() (change code from array.concat() to array.push()) (#2410)
• update (dev) dependencies

[14.0.0] (2025-05-18)

Added

• support for groups of options and commands in the help using low-level .helpGroup() on Option and Command, and higher-level .optionsGroup() and .commandsGroup() which can be used in chaining way to specify group title for following options/commands (#2328)
• support for unescaped negative numbers as option-arguments and command-arguments (#2339)
• TypeScript: add parseArg property to Argument class (#2359)

Fixed

• remove bogus leading space in help when option has default value but not a description (#2348)
• .configureOutput() now makes copy of settings instead of modifying in-place, fixing side-effects (#2350)

Changed

• Breaking: Commander 14 requires Node.js v20 or higher

... (truncated)

Commits

• 8247364 14.0.3
• e281fe3 Update docs for 14.0.3 (#2474)
• 7357dda Separate out a more detailed release policy document (#2462)
• b6e2e3a Bump eslint from 9.39.1 to 9.39.2 (#2470)
• d6f63a7 Bump ts-jest from 29.4.5 to 29.4.6 (#2467)
• 2a9768a Bump prettier from 3.6.2 to 3.7.4 (#2466)
• 9211918 docs(README): Tweak formatting, punctuation for clarity (#2465)
• 4208a96 Bump typescript-eslint from 8.46.2 to 8.48.0 (#2458)
• 03308ce Bump eslint-plugin-jest from 29.0.1 to 29.2.1 (#2457)
• 4d2db1f Bump globals from 16.4.0 to 16.5.0 (#2456)
• Additional commits viewable in compare view

Updates dotenv from 16.4.5 to 17.2.3

Changelog

Sourced from dotenv's changelog.

17.2.3 (2025-09-29)

Changed

• Fixed typescript error definition (#912)

17.2.2 (2025-09-02)

Added

• 🙏 A big thank you to new sponsor Tuple.app - the premier screen sharing app for developers on macOS and Windows. Go check them out. It's wonderful and generous of them to give back to open source by sponsoring dotenv. Give them some love back.

17.2.1 (2025-07-24)

Changed

• Fix clickable tip links by removing parentheses (#897)

17.2.0 (2025-07-09)

Added

• Optionally specify DOTENV_CONFIG_QUIET=true in your environment or .env file to quiet the runtime log (#889)
• Just like dotenv any DOTENV_CONFIG_ environment variables take precedence over any code set options like ({quiet: false})

# .env
DOTENV_CONFIG_QUIET=true
HELLO="World"

// index.js
require('dotenv').config()
console.log(`Hello ${process.env.HELLO}`)

$ node index.js
Hello World
or
$ DOTENV_CONFIG_QUIET=true node index.js

17.1.0 (2025-07-07)

Added

• Add additional security and configuration tips to the runtime log (#884)
• Dim the tips text from the main injection information text

... (truncated)

Commits

• affe113 17.2.3
• db1ff1f changelog 🪵
• 7063f16 Merge pull request #913 from motdotla/new-tips
• 0bbe72c test against expected tips
• 017951b only run .js tests
• 39eda1f add space back
• fcc030e update tips
• b6c7a0d updated tips - as Dotenvx Radar has been renamed Dotenvx Ops
• b3c8b16 remove unnecessary call to npx
• d6e4c17 Merge pull request #912 from adjerbetian/fix/typescript-error-definition
• Additional commits viewable in compare view

Updates fast-astar from 1.0.6 to 2.0.0

Commits

• See full diff in compare view

Updates node-html-markdown from 1.3.0 to 2.0.0

Release notes

Sourced from node-html-markdown's releases.

v2.0.0

2.0.0 (2025-11-14)

⚠ BREAKING CHANGES

• Explicitly deny special handling for elements that should not be inside codeblocks

• Explicitly deny special handling for elements that should not be inside codeblocks (80fd704)

Fixes

• correct nested list indentation to 2 spaces (fixes #57) (9358ccc)
• eliminate circular dependency between config and utilities (fixes #74) (3934406)
• fixed table parsing issue (closes #38, closes #47) (5ac217a)
• handle mixed-case HTML tags correctly (fixes #63) (9016420)
• Ignore options overwritten if block element. (fixes #49) (bdc0d09)
• preserve whitespace and newlines in code blocks (fixes #52, #24) (372be6d)
• preserve whitespace before inline formatting elements (fixes #61, fixes #34) (ba035e6)
• Prevent backslash escaping in tables within list items (fixes #60) (f15e482)
• remove perf functions from browser builds (fixes #58) (d1552fd)
• trim trailing whitespace while preserving two-space line breaks (c0062b8)

Changelog

Sourced from node-html-markdown's changelog.

2.0.0 (2025-11-14)

⚠ BREAKING CHANGES

• Explicitly deny special handling for elements that should not be inside codeblocks

• Explicitly deny special handling for elements that should not be inside codeblocks (80fd704)

Fixes

• correct nested list indentation to 2 spaces (fixes #57) (9358ccc)
• eliminate circular dependency between config and utilities (fixes #74) (3934406)
• fixed table parsing issue (closes #38, closes #47) (5ac217a)
• handle mixed-case HTML tags correctly (fixes #63) (9016420)
• Ignore options overwritten if block element. (fixes #49) (bdc0d09)
• preserve whitespace and newlines in code blocks (fixes #52, #24) (372be6d)
• preserve whitespace before inline formatting elements (fixes #61, fixes #34) (ba035e6)
• Prevent backslash escaping in tables within list items (fixes #60) (f15e482)
• remove perf functions from browser builds (fixes #58) (d1552fd)
• trim trailing whitespace while preserving two-space line breaks (c0062b8)

Commits

• e31e9b1 chore(release): 2.0.0
• 5c6d2c6 build: Updated lockfile
• f15e482 fix: Prevent backslash escaping in tables within list items (fixes #60)
• bdc0d09 fix: Ignore options overwritten if block element. (fixes #49)
• 86f4ac1 build(npm): Updated package.json to require Node >=20
• 28e9358 test: Updated tests for all current changes
• 80fd704 refactor!: Explicitly deny special handling for elements that should not be i...
• c0062b8 fix: trim trailing whitespace while preserving two-space line breaks
• 372be6d fix: preserve whitespace and newlines in code blocks (fixes #52, #24)
• 9358ccc fix: correct nested list indentation to 2 spaces (fixes #57)
• Additional commits viewable in compare view

Updates node-html-parser from 6.1.11 to 7.0.2

Release notes

Sourced from node-html-parser's releases.

v7.0.2

7.0.2 (2026-01-07)

Bug Fixes

• #227 (51528c4)
• #294 Closing tag is missing but valid HTML is still not parseable (950865f)
• add missing dev dependency: yarn (6d73ea3)
• test valid.js (a81fc46)

v7.0.1

7.0.1 (2024-12-26)

Bug Fixes

• upgrade node version (efd77ff)

v6.1.13

6.1.13 (2024-03-29)

Bug Fixes

• add rawTagName #269 #270 (9ac642d)

v6.1.12

6.1.12 (2023-12-25)

Bug Fixes

• #258 (5a6a614)
• nullable return types of HTMLElement (fe83c3e)

Changelog

Sourced from node-html-parser's changelog.

7.0.2 (2026-01-07)

Bug Fixes

• #227 (51528c4)
• #294 Closing tag is missing but valid HTML is still not parseable (950865f)
• add missing dev dependency: yarn (6d73ea3)
• test valid.js (a81fc46)

7.0.1 (2024-12-26)

Bug Fixes

• upgrade node version (efd77ff)

7.0.0 (2024-12-26)

⚠ BREAKING CHANGES

• fix #277, for that change estarget to es6

Features

• fix #277, for that change estarget to es6 (432a3e7)

Bug Fixes

• add tests for #227 (5856ee2)

6.1.14 (2024-05-14)

Bug Fixes

• #274 (fef574d)

6.1.13 (2024-03-29)

Bug Fixes

• add rawTagName #269 #270 (9ac642d)

6.1.12 (2023-12-25)

... (truncated)

Commits

• f7a190c chore(release): 7.0.2
• d003185 Merge branch 'ig3-294'
• 5625286 Merge branch '294' of github.com:ig3/node-html-parser into ig3-294
• d9f5586 chore: update GitHub Actions to use latest versions of checkout and setup-node
• b4ec281 Merge pull request #292 from fiddleplum/o-291
• 4deab9a Merge pull request #288 from olets/285-document-wrapper-node
• 51528c4 Fix: #227
• a81fc46 fix: test valid.js
• 950865f fix: #294 Closing tag is missing but valid HTML is still not parseable
• 6d73ea3 fix: add missing dev dependency: yarn
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions