Bump node-fetch from 2.6.1 to 3.0.0

[dependabot]

Bumps node-fetch from 2.6.1 to 3.0.0.

Release notes

Sourced from node-fetch's releases.

v3.0.0

version 3 is going out of a long beta period and switches to stable

One major change is that it's now a ESM only package See changelog for more information about all the changes

v3.0.0-beta.10

This package is now a ESM only package. To import fetch you either have to use

import fetch from 'node-fetch';
// Or if you are still using commonjs or want to lazy
// import fetch then the async import works fine
import('node-fetch')

• res.blob().stream() now returns a whatwg ReadableStream instad

See CHANGELOG for details.

v3.0.0-beta.9

This is an important security release. It is strongly recommended to update as soon as possible.

See CHANGELOG for details.

v3.0.0-beta.8

See CHANGELOG for details.

v3.0.0-beta.7

See CHANGELOG for details.

v3.0.0-beta.6

See CHANGELOG for details.

v3.0.0-beta.6-exportfix

See CHANGELOG for details.

v3.0.0-beta.5

See CHANGELOG for details.

v3.0.0-beta.1

See CHANGELOG for details.

Changelog

Sourced from node-fetch's changelog.

v3.0.0

• other: Marking v3 as stable
• docs: Add example for loading ESM from CommonJS (#1236)

v3.0.0-beta.10

• Breaking: minimum supported Node.js version is now 12.20.
• Breaking: node-fetch is now a pure ESM module.
• Other: update readme to inform users about ESM.
• Other: update dependencies.

v3.0.0-beta.9

This is an important security release. It is strongly recommended to update as soon as possible.

• Fix: honor the size option after following a redirect.

v3.0.0-beta.8

• Enhance: remove string-to-arraybuffer (#882).
• Enhance: remove parted dependency (#883).
• Fix: export package.json (#908).
• Fix: minimum Node.js version (#874).
• Other: fix typo.

v3.0.0-beta.7

• Breaking: minimum supported Node.js version is now 10.17.
• Enhance: update fetch-blob.
• Enhance: add insecureHTTPParser Parameter (#856).
• Enhance: drop custom Promises and refactor to async functions (#845).
• Enhance: polyfill http.validateHeaderName and http.validateHeaderValue (#843).
• Enhance: should check body source on redirect (#866).
• Enhance: remove code duplication in custom errors (#842).
• Enhance: implement form-data encoding (#603).
• Fix: improve TypeScript types (#841).
• Fix: data URI handling and drop all URL analysis RegExps (#853).
• Fix: headers import statement (#859).
• Fix: correct Node versions were not installed on test matrix (#846).
• Other: test CommonJS build artifact (#838).
• Other: create Code of Conduct (#849).
• Other: readme update.

v3.0.0-beta.6-exportfix

• Fix: fetch function export & declaration, which broke the previous release.

v3.0.0-beta.6

... (truncated)

Commits

• 2603c67 V3 stable release (#1257)
• 2f1b426 docs: Add example for loading ESM from CommonJS (#1236)
• 51861e9 Fix(premature close) Redirect failing when response is chunked but empty (#1222)
• 136a5f1 Add link to v2 docs (#1202)
• b50fbc1 Require Node.js 12.20.0 and move to ESM (#1141)
• ffef5e3 Fix this arg for URLSearchParams prototype call (#1111)
• 694b11a Upgrade to GitHub-native Dependabot (#1139)
• 3b50b0c Add support for Response.error() (#1078)
• 1780f5a fix: Add missing insecureHTTPParser in RequestInit interface (#964)
• 9e50c5b Update README.md (#1112)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by endless, a new releaser for node-fetch since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[andyleejordan]

Oopsie, I thought #3545 was this, but it was just the types. This is what needs to go in and it's failing...

[andyleejordan]

We cannot upgrade to node-fetch 3.x because it is ESM only, which while supported by TypeScript, cannot be loaded in a VS Code extension. See microsoft/vscode#130367

[andyleejordan]

@dependabot ignore this major version

[dependabot]

OK, I won't notify you about version 3.x.x again, unless you re-open this PR or update to a 3.x.x release yourself.

[andyleejordan]

For future reference: https://github.com/node-fetch/node-fetch/blob/main/docs/v3-UPGRADE-GUIDE.md#breaking-changes