fix: bump path-to-regexp and fetch-mock

[dependabot]

Bumps path-to-regexp to 0.1.13 and updates ancestor dependency fetch-mock. These dependencies need to be updated together.

Updates path-to-regexp from 0.1.12 to 0.1.13

Release notes

Sourced from path-to-regexp's releases.

0.1.13

Important

• Fix CVE-2026-4867 (GHSA-37ch-88jc-xwx2)

Full Changelog: pillarjs/path-to-regexp@v0.1.12...v.0.1.13

Changelog

Sourced from path-to-regexp's changelog.

0.1.13 / 2026-03-26

• Fix CVE-2026-4867 (GHSA-37ch-88jc-xwx2)

0.1.7 / 2015-07-28

• Fixed regression with escaped round brackets and matching groups.

0.1.6 / 2015-06-19

• Replace index feature by outputting all parameters, unnamed and named.

0.1.5 / 2015-05-08

• Add an index property for position in match result.

0.1.4 / 2015-03-05

• Add license information

0.1.3 / 2014-07-06

• Better array support
• Improved support for trailing slash in non-ending mode

0.1.0 / 2014-03-06

• add options.end

0.0.2 / 2013-02-10

• Update to match current express
• add .license property to component.json

Commits

• 9fd0c87 0.1.13 (#425)
• 7ccf02c fix: CVE-2026-4867
• See full diff in compare view

Maintainer changes

This version was pushed to npm by ulisesgascon, a new releaser for path-to-regexp since your current version.

Updates fetch-mock from 9.11.0 to 12.6.0

Release notes

Sourced from fetch-mock's releases.

fetch-mock: v12.6.0

12.6.0 (2025-10-29)

Features

• implement host: matcher (2b0a43d)

Documentation Changes

• document new host matcher (6205357)

fetch-mock: v12.5.6

12.5.6 (2025-10-27)

Bug Fixes

• clean abort event listener once it's called or response is returned (4606250)
• clean abort event listener once it's called or response is returned (ca51920)

fetch-mock: v12.5.5

12.5.5 (2025-10-21)

Bug Fixes

• do not try to get a reader from a locked request oder response to cancel them (8c23ecf)
• use optional chaining operator and do not try to cancel locked request or response to prevent errors (b1ff114)
• use optional chaining operator to prevent errors (87f8399)

fetch-mock: v12.5.4

12.5.4 (2025-08-28)

Bug Fixes

• apply browser exports fix for fetch-mock package (318cd94)

fetch-mock: v12.5.3

12.5.3 (2025-06-17)

Bug Fixes

• add wrapper class to fix type ambiguity (b093bb0)
• add wrapper class to fix type ambiguity (ea45aec)

fetch-mock: v12.5.2

... (truncated)

Changelog

Sourced from fetch-mock's changelog.

12.6.0 (2025-10-29)

Features

• implement host: matcher (2b0a43d)

Documentation Changes

• document new host matcher (6205357)

12.5.6 (2025-10-27)

Bug Fixes

• clean abort event listener once it's called or response is returned (4606250)
• clean abort event listener once it's called or response is returned (ca51920)

12.5.5 (2025-10-21)

Bug Fixes

• do not try to get a reader from a locked request oder response to cancel them (8c23ecf)
• use optional chaining operator and do not try to cancel locked request or response to prevent errors (b1ff114)
• use optional chaining operator to prevent errors (87f8399)

12.5.4 (2025-08-28)

Bug Fixes

• apply browser exports fix for fetch-mock package (318cd94)

12.5.3 (2025-06-17)

Bug Fixes

• add wrapper class to fix type ambiguity (b093bb0)
• add wrapper class to fix type ambiguity (ea45aec)

12.5.2 (2025-03-03)

Bug Fixes

• allow matching body for delete requests (891197c)

... (truncated)

Commits

• 4871184 chore: release main
• 32fdb1b test: fixed browser test for host matching
• c50e42d chore: run prettier
• 2b0a43d feat: implement host: matcher
• 6205357 docs: document new host matcher
• 6720a98 test: added failing test for host: matcher
• 346d867 chore: release main
• ca51920 fix: clean abort event listener once it's called or response is returned
• e7a29e8 chore: release main
• 9cdfe9d test: add test for optional chaining for route in call history
• Additional commits viewable in compare view

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.