chore(deps): bump @isaacs/ttlcache from 1.4.1 to 2.0.0

[dependabot]

Bumps @isaacs/ttlcache from 1.4.1 to 2.0.0.

Changelog

Sourced from @​isaacs/ttlcache's changelog.

2.0

• refactor as hybrid typescript module (changes export)
• Blue Oak license

1.4

• add checkAgeOnGet option
• Guard against expiration list going missing

1.3.0

• make cache.cancelTimer a public method
• Reduce memory usage by only creating one timer

1.2

• Add support for immortality
• ensure dispose() only happens after full removal
• Clear timeouts so we don't rely on only unref()
• fix error when deleting immortal entries

1.1

• Add setTTL(key, ttl)
• avoid off-by-1ms purge failures

1.0

• Initial release

Commits

• 6f369f0 2.0.0
• 6f9032b BlueOak License
• 3405a62 BlueOak License
• 56655fe add changelog
• 653217f refactor as hybrid typescript module
• 2f17fb2 update workflows
• b6002f9 remove FUNDING.yml (coming from .github repo now)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

Overall package size

Self size: 13.17 MB
Deduped: 117.26 MB
No deduping: 119.46 MB

Dependency sizes

| name | version | self size | total size | |------|---------|-----------|------------| | @datadog/libdatadog | 0.7.0 | 35.02 MB | 35.02 MB | | @datadog/native-appsec | 10.3.0 | 20.73 MB | 20.74 MB | | @datadog/native-iast-taint-tracking | 4.0.0 | 11.72 MB | 11.73 MB | | @datadog/pprof | 5.12.0 | 11.19 MB | 11.57 MB | | @opentelemetry/core | 1.30.1 | 908.66 kB | 7.16 MB | | protobufjs | 7.5.4 | 2.95 MB | 5.82 MB | | @datadog/wasm-js-rewriter | 4.0.1 | 2.85 MB | 3.58 MB | | @opentelemetry/resources | 1.9.1 | 306.54 kB | 1.74 MB | | @datadog/native-metrics | 3.1.1 | 1.02 MB | 1.43 MB | | @opentelemetry/api-logs | 0.207.0 | 201.39 kB | 1.42 MB | | @opentelemetry/api | 1.9.0 | 1.22 MB | 1.22 MB | | jsonpath-plus | 10.3.0 | 617.18 kB | 1.08 MB | | import-in-the-middle | 1.15.0 | 127.66 kB | 856.24 kB | | lru-cache | 10.4.3 | 804.3 kB | 804.3 kB | | @datadog/openfeature-node-server | 0.1.0-preview.12 | 95.11 kB | 401.68 kB | | opentracing | 0.14.7 | 194.81 kB | 194.81 kB | | source-map | 0.7.6 | 185.63 kB | 185.63 kB | | pprof-format | 2.2.1 | 163.06 kB | 163.06 kB | | @datadog/sketches-js | 2.1.1 | 109.9 kB | 109.9 kB | | @isaacs/ttlcache | 2.0.1 | 78.45 kB | 78.45 kB | | lodash.sortby | 4.7.0 | 75.76 kB | 75.76 kB | | ignore | 7.0.5 | 63.38 kB | 63.38 kB | | istanbul-lib-coverage | 3.2.2 | 34.37 kB | 34.37 kB | | rfdc | 1.4.1 | 27.15 kB | 27.15 kB | | dc-polyfill | 0.1.10 | 26.73 kB | 26.73 kB | | tlhunter-sorted-set | 0.1.0 | 24.94 kB | 24.94 kB | | shell-quote | 1.8.3 | 23.74 kB | 23.74 kB | | limiter | 1.1.5 | 23.17 kB | 23.17 kB | | retry | 0.13.1 | 18.85 kB | 18.85 kB | | semifies | 1.0.0 | 15.84 kB | 15.84 kB | | jest-docblock | 29.7.0 | 8.99 kB | 12.76 kB | | crypto-randomuuid | 1.0.0 | 11.18 kB | 11.18 kB | | ttl-set | 1.0.0 | 4.61 kB | 9.69 kB | | mutexify | 1.4.0 | 5.71 kB | 8.74 kB | | path-to-regexp | 0.1.12 | 6.6 kB | 6.6 kB | | module-details-from-path | 1.0.4 | 3.96 kB | 3.96 kB | | escape-string-regexp | 5.0.0 | 3.66 kB | 3.66 kB |

_{🤖 This report was automatically generated by heaviest-objects-in-the-universe}

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 75.85%. Comparing base (53670c5) to head (ce26374).

Additional details and impacted files

@@            Coverage Diff             @@
##           master    #6748      +/-   ##
==========================================
- Coverage   84.05%   75.85%   -8.21%     
==========================================
  Files         506      504       -2     
  Lines       21260    21130     -130     
==========================================
- Hits        17871    16028    -1843     
- Misses       3389     5102    +1713     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[pr-commenter]

Benchmarks

Benchmark execution time: 2025-10-31 12:30:09

Comparing candidate commit ce26374 in PR branch dependabot/npm_and_yarn/isaacs/ttlcache-2.0.0 with baseline commit 53670c5 in branch master.

Found 24 performance improvements and 0 performance regressions! Performance is the same for 1586 metrics, 60 unstable metrics.

scenario:appsec-appsec-enabled-18

• 🟩 cpu_user_time [-57.924ms; -52.990ms] or [-11.369%; -10.400%]
• 🟩 execution_time [-54.015ms; -48.443ms] or [-9.171%; -8.225%]
• 🟩 instructions [-123.3M instructions; -120.8M instructions] or [-8.840%; -8.661%]

scenario:appsec-appsec-enabled-20

• 🟩 cpu_user_time [-58.092ms; -53.960ms] or [-13.484%; -12.525%]
• 🟩 execution_time [-57.957ms; -54.302ms] or [-11.768%; -11.026%]
• 🟩 instructions [-103.6M instructions; -101.6M instructions] or [-8.481%; -8.317%]

scenario:appsec-appsec-enabled-22

• 🟩 cpu_user_time [-46.659ms; -41.623ms] or [-11.889%; -10.606%]
• 🟩 execution_time [-44.366ms; -39.943ms] or [-9.521%; -8.572%]
• 🟩 instructions [-108.2M instructions; -106.4M instructions] or [-8.901%; -8.758%]

scenario:appsec-appsec-enabled-24

• 🟩 cpu_user_time [-43.897ms; -38.664ms] or [-11.121%; -9.795%]
• 🟩 execution_time [-42.717ms; -38.046ms] or [-9.007%; -8.022%]
• 🟩 instructions [-100.3M instructions; -98.3M instructions] or [-8.641%; -8.465%]

scenario:appsec-appsec-enabled-with-attacks-18

• 🟩 cpu_user_time [-90.538ms; -84.640ms] or [-16.453%; -15.381%]
• 🟩 execution_time [-90.458ms; -84.354ms] or [-14.274%; -13.311%]
• 🟩 instructions [-193.0M instructions; -190.3M instructions] or [-13.114%; -12.927%]

scenario:appsec-appsec-enabled-with-attacks-20

• 🟩 cpu_user_time [-79.701ms; -75.292ms] or [-17.451%; -16.486%]
• 🟩 execution_time [-78.833ms; -74.983ms] or [-15.218%; -14.474%]
• 🟩 instructions [-173.3M instructions; -171.1M instructions] or [-13.334%; -13.168%]

scenario:appsec-appsec-enabled-with-attacks-22

• 🟩 cpu_user_time [-72.294ms; -67.284ms] or [-17.028%; -15.848%]
• 🟩 execution_time [-72.119ms; -67.462ms] or [-14.439%; -13.506%]
• 🟩 instructions [-169.3M instructions; -167.0M instructions] or [-13.184%; -13.005%]

scenario:appsec-appsec-enabled-with-attacks-24

• 🟩 cpu_user_time [-67.313ms; -62.426ms] or [-15.970%; -14.811%]
• 🟩 execution_time [-66.720ms; -61.469ms] or [-13.237%; -12.196%]
• 🟩 instructions [-161.1M instructions; -158.9M instructions] or [-13.157%; -12.975%]