chore(deps-dev): bump undici from 6.18.2 to 6.21.1

[dependabot]

Bumps undici from 6.18.2 to 6.21.1.

Release notes

Sourced from undici's releases.

v6.21.1

⚠️ Security Release ⚠️

Fixes CVE CVE-2025-22150 GHSA-c76h-2ccp-4975 (embargoed until 22-01-2025).

What's Changed

• fix(#3736): back-port 183f8e9 to v6.x by @​ggoodman in nodejs/undici#3855
• fix(#3817): send servername for SNI on TLS (#3821) [backport] by @​metcoder95 in nodejs/undici#3864
• fix: sending formdata bodies with http2 (#3863) [backport] by @​metcoder95 in nodejs/undici#3866
• [Backport v6.x] fix: Fixed the issue that there is no running request when http2 goaway by @​github-actions in nodejs/undici#3877
• types: [backport] Update return type of RetryCallback (#3851) by @​metcoder95 in nodejs/undici#3876

Full Changelog: nodejs/undici@v6.21.0...v6.21.1

v6.21.0

What's Changed

• [Backport v6.x] web: mark as uncloneable when possible (#3709) by @​jazelly in nodejs/undici#3744
• [Backport v6.x] fetch: fix content-encoding order by @​github-actions in nodejs/undici#3764
• [Backport v6.x] fix: handle undefined deref() of WeakRef(socket) by @​github-actions in nodejs/undici#3822
• [Backport v6.x] fix: range end is zero-indexed by @​github-actions in nodejs/undici#3827

Full Changelog: nodejs/undici@v6.20.1...v6.21.0

v6.20.1

What's Changed

• [Backport v6.x] jsdoc: add jsdoc to lib/web/fetch/constants.js by @​github-actions in nodejs/undici#3710
• [Backport v6.x] feat: implement BodyReadable.bytes by @​github-actions in nodejs/undici#3711
• fix: add more expectsPayload methods by @​ronag in nodejs/undici#3715
• [Backport v6.x] chore(H2): onboard H2 into Undici queueing system (#3707) by @​Uzlopak in nodejs/undici#3724
• [Backport v6.x] fix: PoolBase kClose and kDestroy should await and not return the Promise by @​github-actions in nodejs/undici#3723
• [Backport v6.x] fix: extract noop everywhere by @​Uzlopak in nodejs/undici#3727

Full Changelog: nodejs/undici@v6.20.0...v6.20.1

v6.20.0

What's Changed

• Remove patched dom types (v6.x branch) by @​eXhumer in nodejs/undici#3531
• docs(Backport v6.x): Fix signature of RetryHandler by @​github-actions in nodejs/undici#3594
• deps(dev): update @​types/node by @​metcoder95 in nodejs/undici#3618
• fix: throw on retry when payload is consume by downstream by @​github-actions in nodejs/undici#3596
• feat(Backport v6.x): move throwOnError to interceptor by @​github-actions in nodejs/undici#3595
• [Backport v6.x] fix: reduce memory usage in client-h1 by @​github-actions in nodejs/undici#3672
• [Backport v6.x] fix: refactor fast timers, fix UND_ERR_CONNECT_TIMEOUT on event loop blocking by @​github-actions in nodejs/undici#3673
• [Backport v6.x] fix: run asserts first if possible by @​github-actions in nodejs/undici#3674
• [Backport v6.x] fix: use fasttimers for all connection timeouts by @​github-actions in nodejs/undici#3675
• [Backport v6.x] ci: less flaky test/request-timeout.js test by @​github-actions in nodejs/undici#3678
• [Backport v6.x] test: less flaky timers acceptance test, rework fast timer tests to pass them faster by @​github-actions in nodejs/undici#3679

... (truncated)

Commits

• e260e7b Bumped v6.21.1
• c3acc60 Merge commit from fork
• 2414bc9 Update return type of RetryCallback (#3851) (#3876)
• be8cd0a [Backport v6.x] fix: Fixed the issue that there is no running request when ht...
• ee6176c fix: sending formdata bodies with http2 (#3863) [backport] (#3866)
• a0220f1 fix(#3817): send servername for SNI on TLS (#3821) [backport] (#3864)
• 353ab63 fix(#3736): back-port 183f8e9 to v6.x (#3855)
• 61ec353 Bumped v6.21.0
• 11e31a4 fix: range end is zero-indexed (#3826) (#3827)
• 98d1b1b fix: handle undefined deref() of WeakRef(socket) (#3751) (#3822)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Updated (UTC)
panda-docs	✅ Ready (Inspect)	Visit Preview	Feb 6, 2025 10:43pm
panda-playground	✅ Ready (Inspect)	Visit Preview	Feb 6, 2025 10:43pm
panda-studio	✅ Ready (Inspect)	Visit Preview	Feb 6, 2025 10:43pm

[changeset-bot]

⚠️ No Changeset found

Latest commit: b09d7e8

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR