chore(deps): update dependency docusaurus-plugin-sass to v0.2.6

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
docusaurus-plugin-sass	0.2.4 → 0.2.6

---

Release Notes

rlamana/docusaurus-plugin-sass (docusaurus-plugin-sass)

v0.2.6

Compare Source

v0.2.5

Compare Source

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[codesandbox]

Review or Edit in CodeSandbox

Open the branch in Web Editor • VS Code • Insiders

Open Preview

[snyk-io]

✅ Snyk checks have passed. No issues have been found so far.

Status	Scanner	Critical	High	Medium	Low	Total (0)
✅	Open Source Security	0	0	0	0	0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

[augmentcode]

🤖 Augment PR Summary

Summary: This Renovate PR updates the documentation build dependency docusaurus-plugin-sass.

Changes:

• Bumps docusaurus-plugin-sass from 0.2.4 to 0.2.6
• Regenerates the lockfile in microsite/yarn.lock to reflect the updated package resolution

Technical Notes: No application/source code changes are included; this is a dependency/lockfile update intended to keep the microsite tooling current.

_{🤖 Was this summary useful? React with 👍 or 👎}

[augmentcode]

Review completed. No suggestions at this time.

Comment augment review to trigger a new review at any time.

[entelligence-ai-pr-reviews]

Walkthrough

This PR updates the microsite's Sass tooling dependencies by upgrading docusaurus-plugin-sass from version 0.2.4 to 0.2.6. The update includes a major version bump of the underlying sass-loader dependency from v10 to v16, which modernizes the build pipeline by removing deprecated dependencies (klona, loader-utils, schema-utils, semver) and the legacy fibers peer dependency. The upgrade adds support for newer tooling including @rspack/core and sass-embedded, expands compatibility to Docusaurus v3, and updates peer dependency requirements to webpack v5+ only with all peer dependencies now marked as optional. This is a maintenance update that aligns the microsite with current tooling standards.

Changes

File(s)	Summary
microsite/yarn.lock	Updated docusaurus-plugin-sass from 0.2.4 to 0.2.6 and sass-loader from 10.4.1 to 16.0.7, removing deprecated dependencies (klona, loader-utils, schema-utils, semver, fibers), adding support for @rspack/core and sass-embedded, and modernizing peer dependencies to require webpack v5+ with all peer dependencies marked as optional.

Sequence Diagram

This diagram shows the interactions between components:

sequenceDiagram
    participant PM as Package Manager (Yarn)
    participant DPS as docusaurus-plugin-sass
    participant SL as sass-loader
    participant Peers as Peer Dependencies

    Note over PM,Peers: Dependency Update: v0.2.4 → v0.2.6

    PM->>DPS: Update to v0.2.6
    activate DPS
    
    DPS->>SL: Require sass-loader ^16.0.2 (was ^10.1.1)
    activate SL
    
    Note over SL: Major version upgrade<br/>v10.4.1 → v16.0.7
    
    SL->>SL: Remove internal dependencies<br/>(klona, loader-utils, schema-utils, semver)
    
    SL->>Peers: Update peer dependency requirements
    activate Peers
    
    Note over Peers: Webpack: ^5.0.0 only (removed ^4.x support)<br/>Docusaurus: Added ^3.0.0-alpha support<br/>Added @rspack/core & sass-embedded (optional)
    
    Peers-->>SL: Peer dependencies validated
    deactivate Peers
    
    SL-->>DPS: sass-loader v16.0.7 resolved
    deactivate SL
    
    DPS-->>PM: Plugin v0.2.6 with updated dependencies
    deactivate DPS
    
    Note over PM: Lockfile updated with new checksums

Loading

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	@​storybook/​testing-library@​0.2.0
	@​storybook/​node-logger@​6.5.16
	@​storybook/​addons@​6.5.16
	@​storybook/​builder-webpack5@​6.5.16
	@​storybook/​manager-webpack5@​6.5.16
	react@​17.0.2
	@​storybook/​addon-actions@​6.5.16
	storybook-dark-mode@​1.1.2
	swc-loader@​0.2.3
	react-hot-loader@​4.13.1
	@​storybook/​react@​6.5.16
	typescript@​4.7.4
	react-dom@​17.0.2
	@​storybook/​addon-a11y@​6.5.16
	@​storybook/​addon-controls@​6.5.16
	@​storybook/​addon-storysource@​6.5.16
	@​storybook/​addon-links@​6.5.16

View full report

[socket-security]

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action	Severity	Alert  (click "▶" to expand/collapse)
Warn		License policy violation: npm caniuse-lite under CC-BY-4.0 License: CC-BY-4.0 - the applicable license policy does not allow this license (4) (npm metadata) License: CC-BY-4.0 - the applicable license policy does not allow this license (4) (package/package.json) License: CC-BY-4.0 - the applicable license policy does not allow this license (4) (package/LICENSE) From: ? → npm/@storybook/addon-controls@6.5.16 → npm/@storybook/builder-webpack5@6.5.16 → npm/@storybook/manager-webpack5@6.5.16 → npm/@storybook/react@6.5.16 → npm/caniuse-lite@1.0.30001378 ℹ Read more on: This package | This alert | What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support@socket.dev. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore npm/caniuse-lite@1.0.30001378. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm polished under OFL-1.1 License: OFL-1.1 - the applicable license policy does not allow this license (4) (package/docs/assets/fonts/LICENSE.txt) From: ? → npm/@storybook/addon-actions@6.5.16 → npm/polished@4.2.2 ℹ Read more on: This package | This alert | What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support@socket.dev. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore npm/polished@4.2.2. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm typescript under W3C-20150513 License: W3C-20150513 - the applicable license policy does not allow this license (4) (package/ThirdPartyNoticeText.txt) License: CC-BY-4.0 - the applicable license policy does not allow this license (4) (package/ThirdPartyNoticeText.txt) License: LicenseRef-W3C-Community-Final-Specification-Agreement - the applicable license policy does not allow this license (4) (package/ThirdPartyNoticeText.txt) License: MIT-Khronos-old - the applicable license policy does not allow this license (4) (package/ThirdPartyNoticeText.txt) From: storybook/package.json → npm/typescript@4.7.4 ℹ Read more on: This package | This alert | What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support@socket.dev. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore npm/typescript@4.7.4. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report

[github-actions]

This PR has been automatically marked as stale because it has not had recent activity from the author. It will be closed if no further activity occurs. If the PR was closed and you want it re-opened, let us know and we'll re-open the PR so that you can continue the contribution!

[renovate]

Renovate Ignore Notification

Because you closed this PR without merging, Renovate will ignore this update (^0.2.3). You will get a PR once a newer version is released. To ignore this dependency forever, add it to the ignoreDeps array of your Renovate config.

If you accidentally closed this PR, or if you changed your mind: rename this PR to get a fresh replacement PR.