Bump the npm-production group with 2 updates

[dependabot]

Bumps the npm-production group with 2 updates: fast-xml-parser and yaml.

Updates fast-xml-parser from 5.0.8 to 5.0.9

Changelog

Sourced from fast-xml-parser's changelog.

Note: If you find missing information about particular minor version, that version must have been changed without any functional change in this library.

5.0.9 / 2025-03-14

• fix: support numeric entities with values over 0xFFFF (#726) (By (Marc Durdin)[https://github.com/mcdurdin])
• fix: update strnum to fix parsing 0 if skiplike option is used

5.0.8 / 2025-02-27

• fix parsing 0 if skiplike option is used.
  • updating strnum dependency

5.0.7 / 2025-02-25

• fix (#724) typings for cjs.

5.0.6 / 2025-02-20

• fix cli output (By Angel Delgado)
  • remove multiple JSON parsing

5.0.5 / 2025-02-20

• fix parsing of string starting with 'e' or 'E' by updating strnum

5.0.4 / 2025-02-20

• fix CLI to support all the versions of node js when displaying library version.
• fix CJS import in v5
  • by fixing webpack config

5.0.3 / 2025-02-20

• Using strnum ESM module
  • new fixes in strum may break your experience

5.0.2 / 2025-02-20

• fix: include CommonJS resources in the npm package #714 (By Thomas Bouffard)
• fix: move babel deps to dev deps

5.0.1 / 2025-02-19

• fix syntax error for CLI command

5.0.0 / 2025-02-19

• ESM support
  • no change in the functionality, syntax, APIs, options, or documentation.

4.5.2 / 2025-02-18

• Fix null CDATA to comply with undefined behavior (#701) (By Matthieu BOHEAS)
• Fix(performance): Update check for leaf node in saveTextToParentTag function in OrderedObjParser.js (#707) (By ...)
• Fix: emit full JSON string from CLI when no output filename specified (#710) (By Matt Benson)

4.5.1 / 2024-12-15

• Fix empty tag key name for v5 (#697). no impact on v4
• Fixes entity parsing when used in strict mode (#699)

4.5.0 / 2024-09-03

... (truncated)

Commits

• 1d39239 Update README
• 7351cdf update release info
• 6ed9ea2 ci: build with Node 18.x (#734)
• af4f1d2 fix: update benchmark so it's buildable (#731)
• 56107fe update strnum to fix parsing 0 if skiplike option is used
• 5b6000a fix: support numeric entities with values over 0xFFFF (#726)
• efd45cf Update node.js.yml
• 4311158 Update node.js.yml
• 00916e2 disable publish please from workflow
• See full diff in compare view

Updates yaml from 2.7.0 to 2.7.1

Release notes

Sourced from yaml's releases.

v2.7.1

• Do not allow seq with single-line collection value on same line with map key (#603)
• Improve warning & avoid TypeError on bad YAML 1.1 nodes (#610)

Commits

• a141bc0 2.7.1
• a880b42 fix: Do not allow seq with single-line collection value on same line with map...
• 923d67b test: Add test for tab after indent spaces for flow-in-block (#604)
• 7cf843c test: Add descriptive names to tests with issue references
• 9cf06d2 fix: Improve warning & avoid TypeError on bad YAML 1.1 nodes (fixes #610)
• 50cf76b chore: Update docs-slate to skip its CI tests
• 3b2362a docs: Add install option deno add jsr:@eemeli/yaml
• 83cb780 chore: Update docs to use Slate 2.13.1
• 9b02456 chore: Fix JSR version
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

🦙 MegaLinter status: ✅ SUCCESS

Descriptor	Linter	Files	Fixed	Errors	Warnings	Elapsed time
✅ ACTION	actionlint	5		0	0	0.03s
✅ JSON	jsonlint	9		0	0	0.17s
✅ JSON	prettier	9		0	0	1.11s
✅ JSON	v8r	9		0	0	16.0s
✅ MARKDOWN	markdownlint	1		0	0	1.0s
✅ MARKDOWN	markdown-link-check	1		0	0	1.29s
✅ REPOSITORY	checkov	yes		no	no	15.16s
✅ REPOSITORY	gitleaks	yes		no	no	1.0s
✅ REPOSITORY	git_diff	yes		no	no	0.04s
✅ REPOSITORY	grype	yes		no	no	33.17s
✅ REPOSITORY	secretlint	yes		no	no	1.09s
✅ REPOSITORY	syft	yes		no	no	5.1s
✅ REPOSITORY	trivy-sbom	yes		no	no	1.33s
✅ REPOSITORY	trufflehog	yes		no	no	15.82s
✅ TYPESCRIPT	prettier	14		0	0	1.62s
✅ XML	xmllint	2		0	0	0.0s
✅ YAML	prettier	19		0	0	1.05s
✅ YAML	v8r	19		0	0	8.69s
✅ YAML	yamllint	19		0	0	0.33s

See detailed report in MegaLinter reports