chore(deps-dev): Bump npm-groovy-lint from 16.2.0 to 17.0.0

[dependabot]

Bumps npm-groovy-lint from 16.2.0 to 17.0.0.

Release notes

Sourced from npm-groovy-lint's releases.

v17.0.0

What's Changed

• Minimum Node version is now Node 22
• Upgrade dependencies
• Migrate code to match import-fresh v4 new behaviour
• Fix closing brace indentation for lines with multiple braces (inline closures)
• Revert UnnecessaryGString for strings with slashes
• Reduce noise in CI test output
• Performance updates
  • Use exponential backoff (50ms→400ms) for server startup polling instead of fixed 400ms interval
  • Replace synchronous readdirSync with async readdir in temp file cleanup
  • Use structuredClone() instead of JSON.parse(JSON.stringify()) for deep cloning
  • Cache loaded lint rules to avoid re-importing all rule files on every call
  • Reuse single GroovyShell/GroovyClassLoader per request instead of per file
  • Use bounded FixedThreadPool instead of unbounded CachedThreadPool in CodeNarcServer
  • Reduce HTTP request timeout from 600s to 120s for local server calls
• Security updates
  • Restrict temp directory permissions from 0777 to 0700 (owner-only)
  • Replace Math.random() with crypto.randomUUID() for temp file/directory names
  • Add 50 MB request body size limit on CodeNarcServer to prevent OOM attacks
  • Limit stack trace depth in error responses to 20 frames

Pull Requests

• chore(deps): update actions/setup-node action to v6.2.0 by @​renovate[bot] in nvuillam/npm-groovy-lint#530
• chore(deps): update dependency axios to v1.13.3 by @​renovate[bot] in nvuillam/npm-groovy-lint#533
• chore(deps): update all non-major dependencies by @​renovate[bot] in nvuillam/npm-groovy-lint#534
• Bump tar from 7.5.6 to 7.5.7 in the npm_and_yarn group across 1 directory by @​dependabot[bot] in nvuillam/npm-groovy-lint#535
• chore(deps): update dependency @​babel/core to v7.29.0 by @​renovate[bot] in nvuillam/npm-groovy-lint#536
• Bump @​isaacs/brace-expansion from 5.0.0 to 5.0.1 in the npm_and_yarn group across 1 directory by @​dependabot[bot] in nvuillam/npm-groovy-lint#538
• chore(deps): update all non-major dependencies by @​renovate[bot] in nvuillam/npm-groovy-lint#537
• chore(deps): update dependency nyc to v18 by @​renovate[bot] in nvuillam/npm-groovy-lint#543
• chore(deps): update actions/upload-artifact action to v7 - autoclosed by @​renovate[bot] in nvuillam/npm-groovy-lint#546
• revert: UnnecessaryGString for strings with slashes by @​stevenh in nvuillam/npm-groovy-lint#545
• Upgrade axios & deps by @​nvuillam in nvuillam/npm-groovy-lint#548
• Fix closing brace indentation for lines with multiple braces (inline closures) by @​Copilot in nvuillam/npm-groovy-lint#547
• fix(deps): update dependency node-sarif-builder to v4 by @​renovate[bot] in nvuillam/npm-groovy-lint#549
• Node22 minimum + Reduce noise in CI test output + update dependency import-fresh to v4 by @​renovate[bot] in nvuillam/npm-groovy-lint#544
• Optimizes server performance and strengthens security by @​nvuillam in nvuillam/npm-groovy-lint#550

New Contributors

• @​Copilot made their first contribution in nvuillam/npm-groovy-lint#547

Full Changelog: nvuillam/npm-groovy-lint@v16.2.0...v17.0.0

Changelog

Sourced from npm-groovy-lint's changelog.

[17.0.0] 2026-02-28

• Minimum Node version is now Node 22
• Upgrade dependencies
• Migrate code to match import-fresh v4 new behaviour
• Fix closing brace indentation for lines with multiple braces (inline closures)
• Revert UnnecessaryGString for strings with slashes
• Reduce noise in CI test output
• Performance updates
  • Use exponential backoff (50ms→400ms) for server startup polling instead of fixed 400ms interval
  • Replace synchronous readdirSync with async readdir in temp file cleanup
  • Use structuredClone() instead of JSON.parse(JSON.stringify()) for deep cloning
  • Cache loaded lint rules to avoid re-importing all rule files on every call
  • Reuse single GroovyShell/GroovyClassLoader per request instead of per file
  • Use bounded FixedThreadPool instead of unbounded CachedThreadPool in CodeNarcServer
  • Reduce HTTP request timeout from 600s to 120s for local server calls
• Security updates
  • Restrict temp directory permissions from 0777 to 0700 (owner-only)
  • Replace Math.random() with crypto.randomUUID() for temp file/directory names
  • Add 50 MB request body size limit on CodeNarcServer to prevent OOM attacks
  • Limit stack trace depth in error responses to 20 frames

Commits

• ec1b644 17.0.0
• 787ac44 changelog
• 5f53970 Optimizes server performance and strengthens security (#550)
• 9ecdd54 Node22 minimum + Reduce noise in CI test output + update dependency import-fr...
• 510fcf8 fix(deps): update dependency node-sarif-builder to v4 (#549)
• 76e6fb2 Fix closing brace indentation for lines with multiple braces (inline closures...
• 7d0c5e6 Upgrade axios & deps (#548)
• bf692dc Revert "fix: UnnecessaryGString for strings with slashes" (#545)
• 3aced11 chore(deps): update actions/upload-artifact action to v7 (#546)
• a8667b1 chore(deps): update dependency nyc to v18 (#543)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)