fix(deps): update dependency algoliasearch to v5

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
algoliasearch	4.24.0 -> 5.10.1

---

Release Notes

algolia/algoliasearch-client-javascript (algoliasearch)

v5.10.1

Compare Source

• 25de7005c fix(javascript): common package types (#​4015) by @​shortcuts

v5.10.0

Compare Source

• 0a84faf07 feat(javascript): assert algoliasearch bundle (#​3991) by @​shortcuts
• d3ef71cde fix(javascript): do not publish ts (#​4009) by @​shortcuts
• b8fc14883 chore(deps): dependencies 2024-10-21 (#​3992) by @​algolia-bot
• 2c53b455d fix(javascript): use unknown over any (#​4011) by @​shortcuts
• fe2c8440e docs(analytics): constrain pagination only to limit query parameter (#​4012) by @​febeck
• 003bd28f0 chore(javascript): build algoliasearch everytime (#​4013) by @​shortcuts

v5.9.1

Compare Source

• b076b69ba fix(javascript): missing search dependency (#​3988) by @​shortcuts

v5.9.0

Compare Source

• 56164aab9 fix(javascript): do not publish ts (#​3966) by @​shortcuts
• cd98290fa fix(specs): Typo tolernace on words (#​3968) by @​gazconroy
• 21d09d3d3 feat(javascript): add every APIs (#​3942) by @​shortcuts
• 5866c2954 fix(specs): Add context to hitsPerPage (#​3969) by @​gazconroy
• 95e4149a3 chore(deps): dependencies 2024-10-14 (#​3944) by @​algolia-bot
• 8b879dead fix(specs): alternativesAsExact is plurals and synonyms (#​3974) by @​gazconroy
• 1a9b95e85 fix(specs): Separators are non-alphanumeric characters (#​3978) by @​gazconroy
• 519fd9840 fix(specs): multiple clients fixes (#​3971) by @​shortcuts

v5.8.1

Compare Source

• f516d0243 fix(specs): Typos in API descriptions (#​3932) by @​gazconroy
• 434c99f80 fix(specs): use the read transporter for browse (#​3938) by @​millotp
• 6b07138e7 chore: apply codacy fixes (#​3935) by @​millotp
• 45d433d0a fix(specs): correct type for banners [skip-bc] (#​3939) by @​millotp

v5.8.0

Compare Source

• ad8e3d224 fix(specs): update analytics and abtesting max pagination query limit (#​3696) by @​febeck
• bed119166 feat(specs): add support for widgets / banners in search for the csharp client (#​3870) by @​Kalmar99
• 844e57f35 fix(specs): correct typos is Search API (#​3898) by @​gazconroy
• 3c4c87619 chore(deps): dependencies 2024-10-07 (#​3876) by @​algolia-bot
• 3d5828d61 fix(javascript): node 14 compatibility (#​3897) by @​shortcuts
• ed6f4ba0e chore(javascript): use oxlint (#​3895) by @​shortcuts
• f554e09c3 chore: revert and fix release (#​3922) by @​millotp

v5.7.0

Compare Source

• 788483537 chore(clients): add workflow to auto-close PR (#​3834) by @​shortcuts
• e59dd41d5 fix(specs): API key description will be obfuscated (#​3840) by @​kai687
• dc28c0268 feat(specs): add recommend batch rules endpoint (#​3782) by @​raed667
• 6f58ae2dc chore(deps): dependencies 2024-09-30 (#​3842) by @​algolia-bot

v5.6.1

Compare Source

• 847ce7753 chore(javascript): update READMEs (#​3829) by @​shortcuts
• 022131871 fix(specs): correct query params for ingestion [skip-bc] (#​3830) by @​millotp

v5.6.0

Compare Source

• 1939114e1 chore(deps): dependencies 2024-09-23 (#​3790) by @​algolia-bot
• db4cf48c5 feat(javascript): add logger-console package from v4 (#​3823) by @​shortcuts

v5.5.3

Compare Source

• b187a09df fix(javascript): add override to name property (#​3785) by @​shortcuts

v5.5.2

Compare Source

• 1a73994ff fix(specs): recommend remove unsupported query parameters [RECO-2345] [skip-bc] (#​3692) by @​raed667
• 92438873c fix(specs): remove models from ingestion specs [skip-bc] (#​3774) by @​shortcuts

v5.5.1

Compare Source

• 901076592 fix(javascript): react-native lite resolution (#​3771) by @​shortcuts

v5.5.0

Compare Source

• d67c0e0e6 feat(javascript): add react-native field in package.json (#​3767) by @​shortcuts

v5.4.3

Compare Source

• 638058eae fix(specs): update search api specs [skip-bc] (#​3760) by @​Fluf22
• 08d8ee6de chore(deps): dependencies 2024-09-16 [skip-bc] (#​3704) by @​algolia-bot

v5.4.1

Compare Source

• d4df544d6 fix(specs): remove usage [skip-bc] (#​3691) by @​kai687
• d39b87726 chore: assert node helpers (#​3689) by @​shortcuts
• 46d9d8fd0 feat(specs): add (optional) _automaticInsights to search result (#​3688) by @​raed667

v5.4.0

Compare Source

• 52e1b570a feat(javascript): add requester-testing package (#​3684) by @​shortcuts
• 896435217 feat(javascript): add worker exports (#​3680) by @​shortcuts

v5.3.2

Compare Source

• 0a433cc7a fix(javascript): use transporter directly (#​3682) by @​shortcuts

v5.3.1

Compare Source

• 50bd07392 fix(javascript): assert helpers and fix setClientApiKey helper (#​3663) by @​shortcuts

v5.3.0

Compare Source

• 3b673cee4 fix(javascript): type definition and template cleanup (#​3656) by @​shortcuts
• 2c65a8d11 feat(clients): helper to switch API key in use (#​3616) by @​Fluf22
• f126366dc fix(specs): note on Analytics API server (#​3650) by @​kai687
• 3d02b3164 feat(clients): add helper to check if an index exists (#​3646) by @​millotp
• a36746d65 fix(specs): note on insights API server (#​3649) by @​kai687
• 1f53716c6 fix(specs): don't extend $ref objects (#​3623) by @​kai687

v5.2.5

Compare Source

• ff0c99653 chore(javascript): use tsup bundler (#​3640) by @​shortcuts
• a9405b168 fix(specs): usage api (#​3624) by @​kai687
• e3af9554e fix(specs): no links across API specs (#​3643) by @​kai687

v5.2.4

Compare Source

• 3d07a1e4f fix(specs): ignorePlurals can be a boolean string (#​3620) by @​millotp
• c0675ff6b fix(clients): correly parse usage hosts (#​3622) by @​shortcuts

v5.2.3

Compare Source

• 327e08d4e fix(specs): ingestion push task payload [skip-bc] (#​3607) by @​shortcuts

v5.2.2

Compare Source

• 7189cbe4c fix(javascript): dependency imports and low-level init (#​3596) by @​shortcuts
• 796ae3fe2 chore(javascript): add license to the root of the repo (#​3610) by @​shortcuts
• f8b7a77a8 fix(javascript): prefix with node: for node packages (#​3608) by @​atinux

v5.2.1

Compare Source

• 41f849e41 fix(specs): partial update operation (#​3486) by @​kai687

v5.1.1

Compare Source

• 4cbbce55c fix(clients): highlight and snippet results e2e (#​3567) by @​shortcuts
• 7c7de04ab fix(specs): another wrong link (#​3570) by @​kai687
• f38a9ef12 chore(specs): breaking change method names mapping table (#​3568) by @​shortcuts
• 73868d60e fix(javascript): exports type field (#​3569) by @​shortcuts
• 9dedfc90f fix(clients): mention main branch instead of master (#​3566) by @​shortcuts
• 0e5ffb1e8 fix(specs): broken link (#​3559) by @​kai687

v5.1.0

Compare Source

• c8343884e feat(javascript): add search wrappers to lite client (#​3556) by @​shortcuts
• d53060d96 feat(specs): add /schedule endpoint (#​3350) by @​febeck

v5.0.2

Compare Source

• 6cfc2d479 chore(specs): update rendered title for search params (#​3553) by @​shortcuts

v5.0.0

Compare Source

New major version released! Browse our documentation

• 22348001a fix(specs): required ingestion search params (#​3516) by @​shortcuts

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/[email protected]	Transitive: network	+13	9.81 MB	shortcuts

🚮 Removed packages: npm/[email protected]

View full report↗︎

[socket-security]

🚨 Potential security issues detected. Learn more about Socket for GitHub ↗︎

To accept the risk, merge this PR and you will not be notified again.

Alert	Package	Note	CI
Protestware or potentially unwanted behavior	npm/[email protected]	Note: This package prints a protestware console message on install regarding Ukraine for users with Russian language locale	⚠︎
Protestware or potentially unwanted behavior	npm/[email protected]	Note: The script attempts to run a local post-install script, which could potentially contain malicious code. The error handling suggests that it is designed to fail silently, which is a common tactic in malicious scripts.	⚠︎

View full report↗︎

Next steps

What is protestware?

This package is a joke, parody, or includes undocumented or hidden behavior unrelated to its primary function.

Consider that consuming this package may come along with functionality unrelated to its primary purpose.

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/[email protected] or ignore all packages with @SocketSecurity ignore-all

• @SocketSecurity ignore npm/[email protected]

[scissorsneedfoodtoo]

This requires us to migrate to ES modules or TypeScript (via Serverless 5, though we may migrate to AWS SAM, DO Functions, or another service), along with some possible config changes.

Closing for now.

[renovate]

Renovate Ignore Notification

Because you closed this PR without merging, Renovate will ignore this update. You will not get PRs for any future 5.x releases. But if you manually upgrade to 5.x then Renovate will re-enable minor and patch updates automatically.

If you accidentally closed this PR, or if you changed your mind: rename this PR to get a fresh replacement PR.