build(deps): bump the prod-dependencies group across 1 directory with 7 updates

[dependabot]

Bumps the prod-dependencies group with 7 updates in the / directory:

Package	From	To
@duckdb/duckdb-wasm	1.30.0	1.32.0
@preact/signals-core	1.12.1	1.12.2
@uwdata/flechette	2.2.4	2.2.7
chroma-js	3.1.2	3.2.0
postprocessing	6.37.8	6.38.2
three	0.180.0	0.182.0
@observablehq/notebook-kit	1.4.1	1.5.1

Updates @duckdb/duckdb-wasm from 1.30.0 to 1.32.0

Release notes

Sourced from @​duckdb/duckdb-wasm's releases.

v1.32.0

Full Changelog: duckdb/duckdb-wasm@v1.31.0...v1.32.0

v1.31.0

Based on DuckDB v1.4.0

Commits

• a20b829 chore(deps-dev): bump @​types/node from 20.12.7 to 22.14.1
• 170166b Reword HTTP stack limitations
• cf9eca1 Move to new logo
• 42996c2 Fixup cancel-in-progress
• c0beaa3 free buffer memory
• e57c2eb Bump to d1dc88f9
• e04ade0 Bump to v1.4.3
• 71df06f Bump to f8d8ff02d3de5837e2938778935ca47f06e87233
• 269b8d1 Skip login
• 0e374fa Bump node
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​duckdb/duckdb-wasm since your current version.

Updates @preact/signals-core from 1.12.1 to 1.12.2

Commits

• See full diff in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​preact/signals-core since your current version.

Updates @uwdata/flechette from 2.2.4 to 2.2.7

Release notes

Sourced from @​uwdata/flechette's releases.

v2.2.7

Changelog

• Fix: support empty struct fields in Arrow IPC decoding. (thanks @​roelentless!)

Full Changelog: uwdata/flechette@v2.2.6...v2.2.7

v2.2.6

Changelog

• Fix: bug in IPC stream decoding when an empty batch is part of the stream by (thanks @​roelentless!)

Full Changelog: uwdata/flechette@v2.2.5...v2.2.6

v2.2.5

Changelog

• Fix: infer correct bitWidth for Time type based on unit. (thanks @​roelentless!)
• Fix: decoder handling when a null column is not last in schema. (thanks @​roelentless!)
• Update dependencies.

Full Changelog: uwdata/flechette@v2.2.4...v2.2.5

Commits

• 8bd517f chore: Bump patch version, dev deps, ci. (#59)
• 925cf4a Fix: support empty Struct fields in Arrow IPC decoding (#57)
• 1996137 chore: Update ci node versions.
• 89250b5 chore: Update lock file.
• ff7327a chore: Bump patch version.
• c509bb2 Fix bug in IPC stream decoding when an empty batch is part of the stream
• add15cd chore: Update deps, bump patch number.
• f97c371 fix: Remove bitWidth in Time type decoder.
• 4a78b77 chore: Code/comments clean up.
• 1c04474 Infer correct bitWidth for Time type based on unit (#51)
• Additional commits viewable in compare view

Updates chroma-js from 3.1.2 to 3.2.0

Release notes

Sourced from chroma-js's releases.

v3.2.0

What's Changed

• Update domain function to return all scaled-positions rather than only [min, max] by @​jo-chemla in gka/chroma.js#380
• fix scale.domain implementation by @​gka in gka/chroma.js#381

New Contributors

• @​jo-chemla made their first contribution in gka/chroma.js#380

Full Changelog: gka/chroma.js@v3.1.4...v3.2.0

v3.1.4

What's Changed

• docs: fix discord link (resolves #373) by @​gka in gka/chroma.js#379
• feat: chroma.random accepts rng as argument by @​gka in gka/chroma.js#378

Full Changelog: gka/chroma.js@v3.1.3...v3.1.4

v3.1.3

What's Changed

• Fix link on chroma.random in gka/chroma.js#372
• Docs UI Improvement: Make Sidebar Fixed & Scrollable by @​abhishek-junghare in gka/chroma.js#374
• chore: bump dependencies by @​gka in gka/chroma.js#375

New Contributors

• @​abhishek-junghare made their first contribution in gka/chroma.js#374

Full Changelog: gka/chroma.js@v3.1.2...v3.1.3

Changelog

Sourced from chroma-js's changelog.

3.2.0

• scale.domain now returns the original domain array when called with no arguments

3.1.3

• updated dependencies

Commits

• 91eee62 release v3.2.0
• 919d003 fix scale.domain implementation (#381)
• 4e4df90 Update domain function to return all scaled-positions rather than only [min, ...
• f50528f release 3.1.4
• b35ee49 3.1.4
• f681455 feat: chroma.random accepts rng as argument (#378)
• b525407 docs: fix discord link (resolves #373) (#379)
• 873a383 docs: changelog
• 36ed86a 3.1.3
• 48854c0 docs: link to package on unpkg instead of cdnjs
• Additional commits viewable in compare view

Updates postprocessing from 6.37.8 to 6.38.2

Release notes

Sourced from postprocessing's releases.

v6.38.2

Requires three ≥ 0.157.0 < 0.183.0

What's Changed

• Fix alpha blend regression, see #735

v6.38.1

Requires three ≥ 0.157.0 < 0.183.0

What's Changed

• Update CI/CD workflows
• Improve blending 7e8517c, 58af9e2, de7df0a, adc2ace
• Undeprecate ALPHA blend function 882a40f
• CopyMaterial: Add missing colorSpaceConversion d385e9b

Special Thanks

Thanks @​juliangarnier and @​donmccurdy for the continued support! 🌟

v6.38.0

Requires three ≥ 0.157.0 < 0.182.0

This release contains potential breaking changes for DepthOfFieldEffect and effect blending in general. If you encounter any unexpected issues, please create a bug report.

What's Changed

• Update CI/CD workflows
• Update dependencies
• EffectComposer
  • Remove unused ignoreDepthForMultisampleCopy
• DepthOfFieldEffect & CircleOfConfusionMaterial
  • Fix alpha of far color buffer
  • Implement distance-based CoC, see #426
  • CircleOfConfusionMaterial
    • focusRange and focusDistance are now always in world units
    • Deprecate worldFocusDistance and worldFocusRange
• GodRaysEffect
  • Improve light source masking
  • Reduce flickering
  • Fix alpha blend bug, see #730
• CopyPass
  • CopyMaterial
    • Backport support for depth copying from v7
    • Add channelWeights for masking
• BlendMode
  • Deprecate ALPHA blend function, use NORMAL instead
  • All blend functions now consider alpha
• SSAOMaterial, DepthPass, DepthComparisonMaterial, EffectMaterial, DepthMaskMaterial, CircleOfConfusionMaterial
  • Add support for logarithmic depth and reversed depth
• Pass
  • The default camera is now an OrthographicCamera instead of Camera

... (truncated)

Commits

• 0742c37 Merge pull request #736 from pmndrs/dev
• 786f2e1 Update pnpm-lock.yaml
• b6259ab Version 6.38.2
• 3f6f8ef Revert normal blending
• dce9091 Merge pull request #734 from pmndrs/dev
• 6f40279 Version 6.38.1
• d385e9b Add missing colorSpaceConversion
• 7cb0077 Update pnpm-lock.yaml
• caea895 Update package.json
• 4361378 Update shadow map config
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for postprocessing since your current version.

Updates three from 0.180.0 to 0.182.0

Commits

• See full diff in compare view

Updates @observablehq/notebook-kit from 1.4.1 to 1.5.1

Release notes

Sourced from @​observablehq/notebook-kit's releases.

v1.5.1

• Fix various generators to reject the pending promise, if any, when the generator is terminated. #115 Thanks, @​tomlarkworthy!
• Fix various npm: imports to pull explicitly from JsDelivr instead. #94

v1.5.0

• Add R (Rscript) data loader cells. #79
• Fix multiple parameters in DuckDB SQL cells. #97
• Document data loader cell types. #90

Commits

• 25bd176 1.5.1
• a043520 fix(generators): reject pending promises to prevent runtime deadlock (#115)
• c199ce8 restore ts-expect-error
• 2efcd89 fix #94; avoid npm: runtime imports
• 20a50c2 1.5.0
• 93e9397 fix #97; multiple DuckDB parameters
• a45288c fix #90; document data loader types
• 46fd9de formatting
• a4ee1b3 fix #79; R (Rscript) data loaders
• See full diff in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​observablehq/notebook-kit since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[changeset-bot]

⚠️ No Changeset found

Latest commit: cf9e2fa

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[dbmi-svc-checkmarx]

Checkmarx One – Scan Summary & Details – 9775bed9-a8dd-4bc7-84ca-87beea1e4a33

Great job! No new security vulnerabilities introduced in this pull request

---

Use @Checkmarx to interact with Checkmarx PR Assistant.
Examples:
@Checkmarx how are you able to help me?
@Checkmarx rescan this PR