Bump undici, firebase and @angular-devkit/build-angular

[dependabot]

Bumps undici to 6.6.2 and updates ancestor dependencies undici, firebase and @angular-devkit/build-angular. These dependencies need to be updated together.

Updates undici from 5.26.5 to 6.6.2

Release notes

Sourced from undici's releases.

v6.6.2

What's Changed

• fix: webidl.brandcheck non strict should throw by @​Uzlopak in nodejs/undici#2683
• fix: expose EventSource for nodejs by @​Uzlopak in nodejs/undici#2645
• test: more information from debug tests by @​Uzlopak in nodejs/undici#2695
• Fix broken test on linux by @​mcollina in nodejs/undici#2699
• fix: fix the linux patch by @​Uzlopak in nodejs/undici#2703
• test(wpt): mark timed out tests as 'failed' by @​rossilor95 in nodejs/undici#2644
• build(deps-dev): bump borp from 0.5.0 to 0.9.1 by @​dependabot in nodejs/undici#2702
• perf: use insertion sort algorithm by @​tsctx in nodejs/undici#2706
• fix: run node tests on merge by @​Uzlopak in nodejs/undici#2707

New Contributors

• @​rossilor95 made their first contribution in nodejs/undici#2644

Full Changelog: nodejs/undici@v6.6.1...v6.6.2

v6.6.1

⚠️ Security Release ⚠️

Fixes:

• CVE-2024-24750, Backpressure request ignored in fetch()
• CVE-2024-24758 Proxy-Authorization header not cleared on cross-origin redirect in fetch

What's Changed

• fix: flaky debug test by @​Uzlopak in nodejs/undici#2687
• build(deps): bump github/codeql-action from 3.22.12 to 3.23.2 by @​dependabot in nodejs/undici#2688
• build(deps): bump actions/dependency-review-action from 3.1.0 to 4.0.0 by @​dependabot in nodejs/undici#2689
• fix: ci pipeline warnings by @​Uzlopak in nodejs/undici#2685
• perf: optimize Iterator by @​tsctx in nodejs/undici#2692

Full Changelog: nodejs/undici@v6.6.0...v6.6.1

v6.6.0

What's Changed

• add webSocket example by @​mertcanaltin in nodejs/undici#2626
• chore: remove atomic-sleep as dev dependency by @​Uzlopak in nodejs/undici#2648
• chore: remove semver as dev dependency by @​Uzlopak in nodejs/undici#2646
• chore: remove table as dev dependency by @​Uzlopak in nodejs/undici#2649
• chore: remove delay as dev dependency by @​Uzlopak in nodejs/undici#2647
• chore: reduce noise in test-logs test/issue-2349.js by @​Uzlopak in nodejs/undici#2655
• chore: fix faketimer warning in test/request-timeout.js by @​Uzlopak in nodejs/undici#2656
• chore: reduce noise in test logs test/client-node-max-header-size.js by @​Uzlopak in nodejs/undici#2654
• refactor: use fromInnerResponse by @​tsctx in nodejs/undici#2635
• fix: support deflate raw responses by @​Uzlopak in nodejs/undici#2650
• Support building for externally shared js builtins by @​mochaaP in nodejs/undici#2643
• fix: typo clampAndCoarsenConnectionTimingInfo by @​Uzlopak in nodejs/undici#2653
• chore: use 'node:'-prefix for requiring node core modules by @​Uzlopak in nodejs/undici#2662

... (truncated)

Commits

• e48df96 fix: run node tests on merge (#2707)
• 2b3c9b7 perf: use insertion sort algorithm (#2706)
• f187320 Bumped v6.6.2
• 8e14078 build(deps-dev): bump borp from 0.5.0 to 0.9.1 (#2702)
• fa28c05 test(wpt): mark timed out tests as 'failed' (#2644)
• d5ad466 fix: fix the linux patch (#2703)
• cf4d90d Fix broken test on linux (#2699)
• a0812d8 test: more resilient debug tests (#2695)
• 415a540 fix: expose eventsource for nodejs (#2645)
• 2cc38ad fix: webidl.brandcheck non strict should throw (#2683)
• Additional commits viewable in compare view

Updates firebase from 10.7.1 to 10.8.1

Commits

• e60188d Version Packages (#8046)
• 7e2efbf Merge master into release
• f3cec28 Bump undici due to security issue (#8044)
• e5a1a34 update chromedriver to 116 and update url (#8045)
• 9fa0e9f Version Packages (#7995)
• c666027 Merge master into release
• 2f7ad0a Add changeset for Web-Extension package (#8001)
• e6494bc Merge master into release
• dc11a27 update page-view links in analytics docs (#7994)
• 4d88f08 A changeset for additions to the Analytics ConsentSettings interface. (#7990)
• Additional commits viewable in compare view

Updates @angular-devkit/build-angular from 17.0.8 to 17.2.2

Release notes

Sourced from @​angular-devkit/build-angular's releases.

v17.2.2

17.2.2 (2024-02-28)

@​angular-devkit/build-angular

Commit	Description
	ensure all related stylesheets are rebuilt when an import changes

v17.2.1

17.2.1 (2024-02-22)

@​angular-devkit/build-angular

Commit	Description
	allow mts and cts file replacement
	provide Vite client code source map when loading

v17.2.0

17.2.0 (2024-02-14)

@​schematics/angular

Commit	Description
	add support to bun package manager

@​angular/cli

Commit	Description
	add support to bun package manager

@​angular-devkit/build-angular

Commit	Description
	add define build option to application builder
	add JSON build logs when using the application builder
	allow control of Vite-based development server prebundling
	provide default and abbreviated build target support for dev-server and extract-i18n
	provide option to allow automatically cleaning the terminal screen during rebuilds
	support using custom postcss configuration with application builder
	add output location in build stats
	avoid preloading server chunks
	display server bundles in build stats
	downgrade copy-webpack-plugin to workaround Node.js support issue
	ensure correct .html served with Vite dev-server
	limit the number of lazy chunks visible in the stats table
	support string as plugin option in custom postcss plugin config

@​angular-devkit/schematics

Commit	Description
	add bun to known package managers

@​angular/create

| Commit | Description |

... (truncated)

Changelog

Sourced from @​angular-devkit/build-angular's changelog.

17.2.2 (2024-02-28)

@​angular-devkit/build-angular

Commit	Type	Description
3394d3cf1	fix	ensure all related stylesheets are rebuilt when an import changes

17.2.1 (2024-02-22)

@​angular-devkit/build-angular

Commit	Type	Description
9e7c47b59	fix	allow mts and cts file replacement
f2a2e9287	fix	provide Vite client code source map when loading

17.2.0 (2024-02-14)

@​angular/cli

Commit	Type	Description
b3e206741	feat	add support to bun package manager

@​schematics/angular

Commit	Type	Description
03e1aa790	feat	add support to bun package manager

@​angular-devkit/build-angular

Commit	Type	Description
7f57123fd	feat	add define build option to application builder
f4f535653	feat	add JSON build logs when using the application builder
b59f663e5	feat	allow control of Vite-based development server prebundling
8f47f1e96	feat	provide default and abbreviated build target support for dev-server and extract-i18n
7a12074dc	feat	provide option to allow automatically cleaning the terminal screen during rebuilds
7c522aa87	feat	support using custom postcss configuration with application builder
476a68daa	fix	add output location in build stats

... (truncated)

Commits

• ea843eb release: cut the v17.2.2 release
• ac779dd test: update Safari 15 private property E2E for babel changes
• 3394d3c fix(@​angular-devkit/build-angular): ensure all related stylesheets are rebuil...
• ca18ead release: cut the v17.2.1 release
• a361540 test: avoid new Node.js properties in webpack direct E2E chunk size testing
• 40e04f6 test: generalize webpack direct E2E chunk size testing
• 4fc5c6a Revert "refactor(@​schematics/angular): remove private /components API"
• f2a2e92 fix(@​angular-devkit/build-angular): provide Vite client code source map when ...
• 9e7c47b fix(@​angular-devkit/build-angular): allow mts and cts file replacement
• 644010d release: cut the v17.2.0 release
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.