build(deps-dev): bump the eslint group with 2 updates

[dependabot]

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

---

Bumps the eslint group with 2 updates: eslint and eslint-plugin-security.

Updates eslint from 8.57.1 to 9.24.0

Release notes

Sourced from eslint's releases.

v9.24.0

Features

• 556c25b feat: support loading TS config files using --experimental-strip-types (#19401) (Arya Emami)
• 72650ac feat: support TS syntax in init-declarations (#19540) (Nitin Kumar)
• 03fb0bc feat: normalize patterns to handle "./" prefix in files and ignores (#19568) (Pixel998)
• 071dcd3 feat: support TS syntax in no-dupe-class-members (#19558) (Nitin Kumar)
• cd72bcc feat: Introduce a way to suppress violations (#19159) (Iacovos Constantinou)
• 2a81578 feat: support TS syntax in no-loss-of-precision (#19560) (Nitin Kumar)
• 30ae4ed feat: add new options to class-methods-use-this (#19527) (sethamus)
• b79ade6 feat: support TypeScript syntax in no-array-constructor (#19493) (Tanuj Kanti)

Bug Fixes

• b23d1c5 fix: deduplicate variable names in no-loop-func error messages (#19595) (Nitin Kumar)
• fb8cdb8 fix: use any[] type for context.options (#19584) (Francesco Trotta)

Documentation

• f857820 docs: update documentation for --experimental-strip-types (#19594) (Nikolas Schröter)
• 803e4af docs: simplify gitignore path handling in includeIgnoreFile section (#19596) (Thomas Broyer)
• 6d979cc docs: Update README (GitHub Actions Bot)
• 82177e4 docs: Update README (GitHub Actions Bot)
• e849dc0 docs: replace existing var with const (#19578) (Sweta Tanwar)
• 0c65c62 docs: don't pass filename when linting rule examples (#19571) (Milos Djermanovic)
• 6be36c9 docs: Update custom-rules.md code example of fixer (#19555) (Yifan Pan)

Build Related

• 366e369 build: re-enable Prettier formatting for package.json files (#19569) (Francesco Trotta)

Chores

• ef67420 chore: upgrade @​eslint/js@​9.24.0 (#19602) (Milos Djermanovic)
• 4946847 chore: package.json update for @​eslint/js release (Jenkins)
• a995acb chore: correct 'flter'/'filter' typo in package script (#19587) (Josh Goldberg ✨)
• b9a5efa test: skip symlink test on Windows (#19503) (fisker Cheung)
• 46eea6d chore: remove Rule & FormatterFunction from shared/types.js (#19556) (Nitin Kumar)
• bdcc91d chore: modify .editorconfig to keep parity with prettier config (#19577) (Sweta Tanwar)
• 7790d83 chore: fix some typos in comment (#19576) (todaymoon)
• 76064a6 test: ignore package-lock.json for eslint-webpack-plugin (#19572) (Francesco Trotta)

v9.23.0

Features

• 557a0d2 feat: support TypeScript syntax in no-useless-constructor (#19535) (Josh Goldberg ✨)
• 8320241 feat: support TypeScript syntax in default-param-last (#19431) (Josh Goldberg ✨)
• 833c4a3 feat: defineConfig() supports "flat/" config prefix (#19533) (Nicholas C. Zakas)
• 4a0df16 feat: circular autofix/conflicting rules detection (#19514) (Milos Djermanovic)
• be56a68 feat: support TypeScript syntax in class-methods-use-this (#19498) (Josh Goldberg ✨)

Bug Fixes

• 0e20aa7 fix: move deprecated RuleContext methods to subtype (#19531) (Francesco Trotta)
• cc3bd00 fix: reporting variable used in catch block in no-useless-assignment (#19423) (Tanuj Kanti)
• d46ff83 fix: no-dupe-keys false positive with proto setter (#19508) (Milos Djermanovic)
• e732773 fix: navigation of search results on pressing Enter (#19502) (Tanuj Kanti)

... (truncated)

Changelog

Sourced from eslint's changelog.

v9.24.0 - April 4, 2025

• ef67420 chore: upgrade @​eslint/js@​9.24.0 (#19602) (Milos Djermanovic)
• 4946847 chore: package.json update for @​eslint/js release (Jenkins)
• f857820 docs: update documentation for --experimental-strip-types (#19594) (Nikolas Schröter)
• 803e4af docs: simplify gitignore path handling in includeIgnoreFile section (#19596) (Thomas Broyer)
• 6d979cc docs: Update README (GitHub Actions Bot)
• b23d1c5 fix: deduplicate variable names in no-loop-func error messages (#19595) (Nitin Kumar)
• 556c25b feat: support loading TS config files using --experimental-strip-types (#19401) (Arya Emami)
• 82177e4 docs: Update README (GitHub Actions Bot)
• a995acb chore: correct 'flter'/'filter' typo in package script (#19587) (Josh Goldberg ✨)
• 72650ac feat: support TS syntax in init-declarations (#19540) (Nitin Kumar)
• 03fb0bc feat: normalize patterns to handle "./" prefix in files and ignores (#19568) (Pixel998)
• b9a5efa test: skip symlink test on Windows (#19503) (fisker Cheung)
• 46eea6d chore: remove Rule & FormatterFunction from shared/types.js (#19556) (Nitin Kumar)
• fb8cdb8 fix: use any[] type for context.options (#19584) (Francesco Trotta)
• 071dcd3 feat: support TS syntax in no-dupe-class-members (#19558) (Nitin Kumar)
• e849dc0 docs: replace existing var with const (#19578) (Sweta Tanwar)
• bdcc91d chore: modify .editorconfig to keep parity with prettier config (#19577) (Sweta Tanwar)
• 7790d83 chore: fix some typos in comment (#19576) (todaymoon)
• cd72bcc feat: Introduce a way to suppress violations (#19159) (Iacovos Constantinou)
• 2a81578 feat: support TS syntax in no-loss-of-precision (#19560) (Nitin Kumar)
• 366e369 build: re-enable Prettier formatting for package.json files (#19569) (Francesco Trotta)
• 30ae4ed feat: add new options to class-methods-use-this (#19527) (sethamus)
• b79ade6 feat: support TypeScript syntax in no-array-constructor (#19493) (Tanuj Kanti)
• 0c65c62 docs: don't pass filename when linting rule examples (#19571) (Milos Djermanovic)
• 76064a6 test: ignore package-lock.json for eslint-webpack-plugin (#19572) (Francesco Trotta)
• 6be36c9 docs: Update custom-rules.md code example of fixer (#19555) (Yifan Pan)

v9.23.0 - March 21, 2025

• 0ac8ea4 chore: update dependencies for v9.23.0 release (#19554) (Francesco Trotta)
• 20591c4 chore: package.json update for @​eslint/js release (Jenkins)
• 901344f chore: update dependency @​eslint/json to ^0.11.0 (#19552) (renovate[bot])
• 557a0d2 feat: support TypeScript syntax in no-useless-constructor (#19535) (Josh Goldberg ✨)
• 2357edd build: exclude autogenerated files from Prettier formatting (#19548) (Francesco Trotta)
• 5405939 docs: show red underlines in TypeScript examples in rules docs (#19547) (Milos Djermanovic)
• 48b53d6 docs: replace var with const in examples (#19539) (Nitin Kumar)
• 0e20aa7 fix: move deprecated RuleContext methods to subtype (#19531) (Francesco Trotta)
• 5228383 chore: fix update-readme formatting (#19544) (Milos Djermanovic)
• c39d7db docs: Update README (GitHub Actions Bot)
• a4f8760 docs: revert accidental changes (#19542) (Francesco Trotta)
• 5439525 chore: format JSON files in Trunk (#19541) (Francesco Trotta)
• 75adc99 chore: enabled Prettier in Trunk (#19354) (Josh Goldberg ✨)
• 2395168 chore: added .git-blame-ignore-revs for Prettier via trunk fmt (#19538) (Josh Goldberg ✨)
• 129882d chore: formatted files with Prettier via trunk fmt (#19355) (Josh Goldberg ✨)
• 1738dbc chore: temporarily disable prettier in trunk (#19537) (Josh Goldberg ✨)
• 8320241 feat: support TypeScript syntax in default-param-last (#19431) (Josh Goldberg ✨)
• 280128f docs: add copy button (#19512) (xbinaryx)
• 833c4a3 feat: defineConfig() supports "flat/" config prefix (#19533) (Nicholas C. Zakas)

... (truncated)

Commits

• d49f5b7 9.24.0
• 9b6ed8a Build: changelog update for 9.24.0
• ef67420 chore: upgrade @​eslint/js@​9.24.0 (#19602)
• 4946847 chore: package.json update for @​eslint/js release
• f857820 docs: update documentation for --experimental-strip-types (#19594)
• 803e4af docs: simplify gitignore path handling in includeIgnoreFile section (#19596)
• 6d979cc docs: Update README
• b23d1c5 fix: deduplicate variable names in no-loop-func error messages (#19595)
• 556c25b feat: support loading TS config files using --experimental-strip-types (#19...
• 82177e4 docs: Update README
• Additional commits viewable in compare view

Updates eslint-plugin-security from 1.7.1 to 4.0.0

Release notes

Sourced from eslint-plugin-security's releases.

eslint-plugin-security: v4.0.0

4.0.0 (2026-02-19)

⚠ BREAKING CHANGES

• requires node ^18.18.0 || ^20.9.0 || >=21.1.0 (#146)
• switch the recommended config to flat (#118)

Features

• add config recommended-legacy (#132) (13d3f2f)
• Add meta object documentation for all rules (#79) (fb1d9ef)
• detect-bidi-characters rule (#95) (4294d29)
• detect-non-literal-fs-filename: change to track non-top-level require() as well (#105) (d3b1543)
• extend detect non literal fs filename (#92) (08ba476)
• improve detect-child-process rule (#108) (64ae529)
• non-literal-require: support template literals (#81) (208019b)
• requires node ^18.18.0 || ^20.9.0 || >=21.1.0 (#146) (df1b606)
• switch the recommended config to flat (#118) (e20a366)

Bug Fixes

• Add ESLint 10 compatibility for context.sourceCode API change (#186) (7f9ee77)
• add name to recommended flat config (#161) (aa1c8c5)
• Avoid crash when exec() is passed no arguments (7f97815), closes #82 #23
• Avoid TypeError when exec stub is used with no arguments (#97) (9c18f16)
• detect-child-process: false positive for destructuring with exec (#102) (657921a)
• detect-child-process: false positives for destructuring spawn (#103) (fdfe37d)
• Ensure empty eval() doesn't crash detect-eval-with-expression (#139) (8a7c7db)
• Ensure everything works with ESLint v9 (#145) (ac50ab4)
• false positives for static expressions in detect-non-literal-fs-filename, detect-child-process, detect-non-literal-regexp, and detect-non-literal-require (#109) (56102b5)
• generate provenance statement for release (#168) (eb3ee9c)
• Incorrect method name in detect-buffer-noassert. (313c0c6), closes #63 #80
• release-please config (#189) (2443d10)

Changelog

Sourced from eslint-plugin-security's changelog.

4.0.0 (2026-02-19)

⚠ BREAKING CHANGES

• requires node ^18.18.0 || ^20.9.0 || >=21.1.0 (#146)
• switch the recommended config to flat (#118)

Features

• add config recommended-legacy (#132) (13d3f2f)
• Add meta object documentation for all rules (#79) (fb1d9ef)
• detect-bidi-characters rule (#95) (4294d29)
• detect-non-literal-fs-filename: change to track non-top-level require() as well (#105) (d3b1543)
• extend detect non literal fs filename (#92) (08ba476)
• improve detect-child-process rule (#108) (64ae529)
• non-literal-require: support template literals (#81) (208019b)
• requires node ^18.18.0 || ^20.9.0 || >=21.1.0 (#146) (df1b606)
• switch the recommended config to flat (#118) (e20a366)

Bug Fixes

• Add ESLint 10 compatibility for context.sourceCode API change (#186) (7f9ee77)
• add name to recommended flat config (#161) (aa1c8c5)
• Avoid crash when exec() is passed no arguments (7f97815), closes #82 #23
• Avoid TypeError when exec stub is used with no arguments (#97) (9c18f16)
• detect-child-process: false positive for destructuring with exec (#102) (657921a)
• detect-child-process: false positives for destructuring spawn (#103) (fdfe37d)
• Ensure empty eval() doesn't crash detect-eval-with-expression (#139) (8a7c7db)
• Ensure everything works with ESLint v9 (#145) (ac50ab4)
• false positives for static expressions in detect-non-literal-fs-filename, detect-child-process, detect-non-literal-regexp, and detect-non-literal-require (#109) (56102b5)
• generate provenance statement for release (#168) (eb3ee9c)
• Incorrect method name in detect-buffer-noassert. (313c0c6), closes #63 #80
• release-please config (#189) (2443d10)

3.0.1 (2024-06-14)

Bug Fixes

• add name to recommended flat config (#161) (aa1c8c5)

3.0.1 (2024-06-13)

Bug Fixes

• add name to recommended flat config (#161) (aa1c8c5)

... (truncated)

Commits

• 4b734af chore: release 4.0.0 🚀 (#192)
• 2443d10 fix: release-please config (#189)
• ee73862 chore(deps-dev): bump js-yaml from 4.1.0 to 4.1.1 (#187)
• ca182d1 chore(deps): bump serialize-javascript and mocha (#184)
• 7f9ee77 fix: Add ESLint 10 compatibility for context.sourceCode API change (#186)
• 99032c3 ci: trusted publishing (#180)
• 5e096f2 ci(ci): add node 24 to test matrix (#176)
• e060aeb ci: migrate to manifest config (#173)
• fc0af81 chore(.eslint-doc-generatorrc): add missing 'use strict' directive (#170)
• f6a29ef chore(package): explicitly declare js module type (#171)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for eslint-plugin-security since your current version.

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
eslint	[>= 9.18.a, < 9.19]
eslint	[>= 9.20.a, < 9.21]
eslint	[>= 9.21.a, < 9.22]
eslint	[>= 9.23.a, < 9.24]
eslint	[>= 9.25.a, < 9.26]
eslint	[>= 9.26.a, < 9.27]
eslint	[>= 9.27.a, < 9.28]
eslint	[>= 9.29.a, < 9.30]
eslint	[>= 9.33.a, < 9.34]
eslint	[>= 9.36.a, < 9.37]
eslint	[>= 9.38.a, < 9.39]
eslint	[>= 9.39.a, < 9.40]
eslint	[>= 9.37.a, < 9.38]
eslint	[>= 9.35.a, < 9.36]
eslint	[>= 9.34.a, < 9.35]
eslint	[>= 9.32.a, < 9.33]
eslint	[>= 9.31.a, < 9.32]
eslint	[>= 9.30.a, < 9.31]
eslint	[>= 9.28.a, < 9.29]
eslint	[>= 10.0.a, < 10.1]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[nev21]

@dependabot ignore eslint-plugin-security minor version

[dependabot]

OK, I won't notify you about version 4.0.x of eslint-plugin-security again, unless you unignore it.

[nev21]

@dependabot ignore eslint minor version

[dependabot]

OK, I won't notify you about version 9.24.x of eslint again, unless you unignore it.

[dependabot]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml