Bump zwave-js from 14.0.0 to 14.3.0

[dependabot]

Bumps zwave-js from 14.0.0 to 14.3.0.

Release notes

Sourced from zwave-js's releases.

Release v14.3.0

This release adds support for using the WebCrypto API as the cryptography backend. Unlike the node:crypto module, this API is supported by all modern browsers and JS runtimes.

Technically this is a breaking change, as SecurityManager2 now needs to be instantiated asynchronously using await SecurityManager2.create() instead of new SecurityManager2(). However, we don't expect anyone to use this class directly, so this will not be marked as a semver-major release.

Changes under the hood

• Improve portability of the library by supporting the WebCrypto API as cryptography backend (#7386)

Release v14.2.0

Changes under the hood

• Improved tree-shakability (#7376, #7379)
• CCs are now parsed and serialized asynchronously, Message instances are serialized asynchronously (#7377)

Release v14.1.0

Features

• Allow specifying RF region for OTA firmware updates if the region is unknown or cannot be queried (#7369)
• Add tryUnzipFirmwareFile utility to support zipped OTA firmware files (#7372)

Bugfixes

• Parse negative setback state consistently (#7366)
• Ignore LR nodes when computing neighbor discovery timeout (#7367)
• Automatically fall back to Europe when setting region to Default (EU) (#7368)

Changes under the hood

• Improve bundler-friendlyness of @zwave-js/core and @zwave-js/shared with new browser-specific entry points and sideEffects hints (#7374)

Changelog

Sourced from zwave-js's changelog.

14.3.0 (2024-11-11)

This release adds support for using the WebCrypto API as the cryptography backend. Unlike the node:crypto module, this API is supported by all modern browsers and JS runtimes.

Technically this is a breaking change, as SecurityManager2 now needs to be instantiated asynchronously using await SecurityManager2.create() instead of new SecurityManager2(). However, we don't expect anyone to use this class directly, so this will not be marked as a semver-major release.

Changes under the hood

• Improve portability of the library by supporting the WebCrypto API as cryptography backend (#7386)

14.2.0 (2024-11-07)

Changes under the hood

• Improved tree-shakability (#7376, #7379)
• CCs are now parsed and serialized asynchronously, Message instances are serialized asynchronously (#7377)

14.1.0 (2024-11-06)

Features

• Allow specifying RF region for OTA firmware updates if the region is unknown or cannot be queried (#7369)
• Add tryUnzipFirmwareFile utility to support zipped OTA firmware files (#7372)

Bugfixes

• Parse negative setback state consistently (#7366)
• Ignore LR nodes when computing neighbor discovery timeout (#7367)
• Automatically fall back to Europe when setting region to Default (EU) (#7368)

Changes under the hood

• Improve bundler-friendlyness of @zwave-js/core and @zwave-js/shared with new browser-specific entry points and sideEffects hints (#7374)

Commits

• 4e2830a chore: release v14.3.0
• de2cbc8 chore: update changelog
• f7f1254 feat: support WebCrypto API as cryptography backend (#7386)
• d924721 docs: update specifications
• 6dbfec1 fix: import config script (#7380)
• 028e8df docs: update specs submodule
• 14a590b chore: release v14.2.0
• f294ffc chore: update changelog
• f79ba97 refactor: improve tree-shakability of code using reflection or semver (#7379)
• 0eb8884 refactor: asynchronous serialization and parsing (#7377)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)