Merge pull request #149 from cooljeanius/dependabot/npm_and_yarn/src/…

…texinfo/js/npm-b141d0ccca

Bump the npm group in /src/texinfo/js with 2 updates

.github/workflows/codeql-csharp.yml

@@ -0,0 +1,141 @@
+---
+# .github/workflows/codeql-csharp.yml: GHA CodeQL workflow for apple-gdb-1824
+# This one is specifically for csharp
+
+name: "CodeQL-csharp"
+
+on:
+  push:
+    branches:
+      - master
+      - main
+      - dependabot/nuget/*
+      - codeql-*
+      - autofix*alert*
+      - alert*autofix*
+  pull_request:
+    # The branches below must be a subset of the branches above
+    branches:
+      - master
+      - main
+      - dependabot/nuget/*
+      - codeql-*
+      - autofix*alert*
+      - alert*autofix*
+  schedule:
+    - cron: '38 5 * * 2'
+
+jobs:
+  analyze:
+    name: Analyze
+    # Runner size impacts CodeQL analysis time. To learn more, please see:
+    #   - https://gh.io/recommended-hardware-resources-for-running-codeql
+    #   - https://gh.io/supported-runners-and-hardware-resources
+    #   - https://gh.io/using-larger-runners
+    # Consider using larger runners for possible analysis time improvements.
+    runs-on: ubuntu-22.04
+    timeout-minutes: 360
+    permissions:
+      actions: read
+      contents: read
+      security-events: write
+
+    strategy:
+      fail-fast: false
+      matrix:
+        language: ['csharp']
+
+    steps:
+    - name: Checkout repository
+      uses: actions/checkout@v4
+
+    # Initializes the CodeQL tools for scanning.
+    - name: Initialize CodeQL
+      uses: github/codeql-action/init@v3
+      with:
+        languages: ${{ matrix.language }}
+        # If you wish to specify custom queries, you can do so here or in a
+        # config file.
+        # By default, queries listed here will override any specified in a
+        # config file.
+        # Prefix the list here with "+" to use these queries and those in the
+        # config file.
+
+        # For more details on CodeQL's query packs, refer to:
+        # https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning#using-queries-in-ql-packs
+        # queries: security-extended,security-and-quality
+
+    - name: Create builddirs
+      run: |
+        if test ! -d build; then \
+          (sync && mkdir build && sync); \
+        else \
+          (sync && stat build && sync); \
+        fi
+        if test ! -d /home/runner/work/apple-gdb-1824/build; then \
+          if test -w /home/runner/work/apple-gdb-1824; then \
+            (sync && mkdir -v /home/runner/work/apple-gdb-1824/build && sync); \
+          elif test -w /home/runner/work -o -w /home/runner -o -w /home; then \
+            (sync && mkdir -pv /home/runner/work/apple-gdb-1824/build && sync); \
+          else \
+            (sync && (stat /home/runner/work || stat /home/runner || stat /home)); \
+            echo "unable to make the necessary builddir due to unwriteable directories"; \
+          fi; \
+        else \
+          (sync && stat /home/runner/work/apple-gdb-1824/build && sync); \
+        fi
+        (cd src && sync && echo "now in $(pwd)..." && sync)
+        sleep 1
+
+    - name: Dependencies
+      run: |
+        sudo apt-get -qq update
+        sudo apt-get -y install mono-csharp-shell dotnet-host mono-mcs nant \
+          nunit mono-xbuild yamllint monodoc-nunit-manual
+
+    - name: Syntax check (and similar stuff)
+      if: matrix.language != 'c-cpp' && matrix.language != 'java-kotlin'
+      run: |
+        if test -x "$(which yamllint)"; then \
+          sync && which -a yamllint && sleep 1; \
+          yamllint .github/codeql/extensions/apple-gdb*csharp/codeql-pack.yml; \
+          stat "$(which csc)" || stat "$(which mcs)" || which -a dotnet; \
+          sync && echo "TODO: find a proper linter for csharp…" && sleep 1; \
+        else \
+          sync && echo "yamllint is missing or unusable!"; \
+          sync && sleep 1; \
+        fi
+
+    - name: Autobuild
+      uses: github/codeql-action/autobuild@v3
+
+    - name: Debug failure
+      if: "${{ failure() }}"
+      run: |
+        find . -name config.log -print0 | xargs -0 cat | grep -i error | sort | uniq
+
+    - name: Check what might be slowing CodeQL down
+      run: |
+        if test -x "$(which java)"; then \
+          sync && java --version; \
+          sync && java --help; \
+          sync && java --help-extra; \
+          sync && java --validate-modules; \
+        else \
+          sudo apt-get install --fix-missing default-jre-headless; \
+        fi
+        sync && echo "ps aux" && sync && ps aux
+        if test -x "$(which purge)"; then \
+          which -a purge; \
+          purge || sudo purge; \
+        elif test -x "$(which sync)"; then \
+          which sync && sync && stat "$(which sync)"; \
+          sync && echo "...and synced." && sleep 1; \
+        else \
+          sleep 1; \
+        fi
+
+    - name: Perform CodeQL Analysis
+      uses: github/codeql-action/analyze@v3
+      with:
+        category: "/language:${{matrix.language}}"

.github/workflows/codeql.yml

@@ -54,7 +54,7 @@ jobs:
     strategy:
       fail-fast: false
       matrix:
-        language: ['c-cpp', 'csharp', 'go', 'java-kotlin', 'javascript-typescript', 'python', 'ruby']
+        language: ['c-cpp', 'go', 'java-kotlin', 'javascript-typescript', 'python', 'ruby']
         # CodeQL supports the following languages:
         # 'c-cpp', 'csharp', 'go', 'java-kotlin', 'javascript-typescript',
         # 'python', 'ruby', 'swift'
@@ -119,9 +119,9 @@ jobs:
         if test ${{ matrix.language }} == 'c-cpp'; then \
           sudo apt-get -y install autopoint gobjc clang autogen curl \
             guile-2.2 guile-2.2-dev guile-2.2-libs guile-3.0 guile-3.0-dev \
-            guile-3.0-libs libguile-ssh13 libiconv-hook1 libiconv-hook-dev \
+            guile-3.0-libs libguile-ssh14 libiconv-hook1 libiconv-hook-dev \
             win-iconv-mingw-w64-dev mingw-w64 mingw-w64-i686-dev wine libwine \
-            libwine-dev libtbb-dev crosshurd libdispatch0 libdispatch-dev \
+            libwine-dev libtbb-dev crosshurd libdispatch-class-perl \
             libblocksruntime0 libblocksruntime-dev systemtap-sdt-dev \
             libfl-dev libiberty-dev libmpfr-dev gettext libisl-dev \
             gdb ddd texlive-binaries sharutils xutils-dev llvm libacl1-dev \
@@ -136,29 +136,25 @@ jobs:
             libgradle-jflex-plugin-java gradle-apt-plugin; \
         elif test ${{ matrix.language }} == 'javascript-typescript'; then \
           sudo apt-get -y install node-optionator eslint uglifyjs \
-            libjs-modernizr node-babel-eslint npm wkhtmltopdf node-dompurify \
+            libjs-modernizr npm wkhtmltopdf node-dompurify \
             libjavascriptcoregtk-4.0-bin webkit2gtk-driver yamllint; \
         elif test ${{ matrix.language }} == 'go'; then \
           sudo apt-get -y install gccgo gccgo-multilib golang golang-go \
             golang-src golang-ar-dev golang-honnef-go-tools-dev yamllint; \
-        elif test ${{ matrix.language }} == 'csharp'; then \
-          sudo apt-get -y install mono-csharp-shell dotnet-host mono-mcs nant \
-            nunit mono-xbuild yamllint monodoc-nunit-manual; \
         elif test ${{ matrix.language }} == 'python'; then \
-          sudo apt-get -y install --fix-missing jython pylint pymacs python-tk \
-            tix flake8 python3-macholib yamllint black python3-pyls-black \
-            python3-pylsp-black python3-pyflakes python3-pylint-plugin-utils \
-            python3-pylint-common pyflakes3 python3-pytest-pylint \
-            python3-flake8 python3-pytest-flake8 python3-pep8-naming \
-            python3-mccabe python3-autopep8 python3-flake8-docstrings \
-            python3-flake8-blind-except python3-flake8-builtins \
-            python3-pylsp-flake8 python3-flake8-class-newline \
+          sudo apt-get -y install --fix-missing jython pylint pymacs \
+            tix flake8 python3-macholib yamllint black python3-pylsp-black \
+            python3-pyflakes python3-pylint-plugin-utils python3-pylint-common \
+            pyflakes3 python3-pytest-pylint python3-flake8 python3-pytest-flake8 \
+            python3-pep8-naming python3-mccabe python3-autopep8 \
+            python3-flake8-docstrings python3-flake8-blind-except \
+            python3-flake8-builtins python3-flake8-class-newline \
             python3-flake8-quotes python3-flake8-import-order \
             python3-flake8-comprehensions python3-flake8-deprecated; \
           pip install pylint flake8 ruff black pyupgrade bandit; \
         elif test ${{ matrix.language }} == 'ruby'; then \
           sudo apt-get -y install ruby ruby-dev libruby rake ruby-full \
-            ruby-ffi ruby-build jruby-openssl mruby libmruby-dev; \
+            ruby-ffi ruby-build jruby mruby libmruby-dev; \
         else \
           sync && echo "unhandled language ${{ matrix.language }}" && sleep 1; \
         fi
@@ -307,11 +303,6 @@ jobs:
           else \
             sync && echo "autopep8 missing or unusable; skipping..."; \
           fi; \
-        elif test ${{ matrix.language }} == 'csharp' && test -x "$(which yamllint)"; then \
-          sync && which -a yamllint && sleep 1; \
-          yamllint .github/codeql/extensions/apple-gdb*csharp/codeql-pack.yml; \
-          stat "$(which csc)" || stat "$(which mcs)" || which -a dotnet; \
-          sync && echo "TODO: find a proper linter for csharp…" && sleep 1; \
         else \
           sync && echo "unhandled case for syntax check step!"; \
           sync && echo "(matrix.language is ${{ matrix.language }})"; \

.yamllint.yml

@@ -11,7 +11,7 @@ rules:
   indentation:
     ignore:
       - .github/workflows/apple-gdb-1824-macos.yml
-      - .github/workflows/codeql.yml
+      - .github/workflows/codeql*.yml
   # some lines might be really long in this repo, and I don't feel like
   # figuring out how to break them up:
   line-length:

src/texinfo/js/package.json

@@ -18,11 +18,11 @@
     "dompurify": "^3.2.3"
   },
   "devDependencies": {
-    "eslint": "^9.17.0",
+    "eslint": "^9.18.0",
     "finalhandler": "^1.3.1",
     "modernizr": "^3.13.1",
     "serve-static": "^1.16.2",
-    "typescript": "^5.7.2",
+    "typescript": "^5.7.3",
     "uglify-js": "^3.19.3"
   }
 }