build(deps): bump lodash and aem-clientlib-generator in /ui.frontend

[dependabot]

Bumps lodash to 4.17.23 and updates ancestor dependency aem-clientlib-generator. These dependencies need to be updated together.

Updates lodash from 4.17.21 to 4.17.23

Commits

• dec55b7 Bump main to v4.17.23 (#6088)
• 19c9251 fix: setCacheHas JSDoc return type should be boolean (#6071)
• b5e6729 jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (#6062)
• edadd45 Prevent prototype pollution on baseUnset function
• 4879a7a doc: fix autoLink function, conversion of source links (#6056)
• 9648f69 chore: remove yarn.lock file (#6053)
• dfa407d ci: remove legacy configuration files (#6052)
• 156e196 feat: add renovate setup (#6039)
• 933e106 ci: add pipeline for Bun (#6023)
• 072a807 docs: update links related to Open JS Foundation (#5968)
• Additional commits viewable in compare view

Updates aem-clientlib-generator from 1.8.0 to 2.0.0

Release notes

Sourced from aem-clientlib-generator's releases.

2.0.0

⚠ Breaking Changes

• Version 2.0.0 includes an upgrade of the glob dependency from v7 to v13 which might break in subtle ways on complex path patterns, see https://github.com/isaacs/node-glob/blob/main/changelog.md#90
• However, in most cases updating to the latest version should "just work"

What’s Changed

• Lock file maintenance (#128) @renovate[bot]
• Update dependency glob to v13 (#126) @renovate[bot]
• Bump js-yaml from 4.1.0 to 4.1.1 in /integration-test/wcmio-archetype-module-cjs (#127) @dependabot[bot]
• Bump node-forge from 1.3.1 to 1.3.3 in /integration-test/wcmio-archetype-module (#125) @dependabot[bot]
• Lock file maintenance (#115) @renovate[bot]
• Bump webpack from 5.102.1 to 5.105.0 in /integration-test/wcmio-archetype-module (#123) @dependabot[bot]
• Bump qs and express in /integration-test/wcmio-archetype-module-cjs (#124) @dependabot[bot]
• Bump webpack from 5.102.1 to 5.105.0 in /integration-test/wcmio-archetype-commonjs (#121) @dependabot[bot]
• Update dependency lodash to v4.17.23 [SECURITY] (#120) @renovate[bot]
• Bump qs and express in /integration-test/wcmio-archetype-module (#118) @dependabot[bot]
• Bump qs and express in /integration-test/wcmio-archetype-commonjs (#117) @dependabot[bot]
• Update dependency fs-extra to v11.3.3 (#116) @renovate[bot]
• Bump node-forge from 1.3.1 to 1.3.2 in /integration-test/wcmio-archetype-module-cjs (#113) @dependabot[bot]
• Bump js-yaml from 4.1.0 to 4.1.1 in /integration-test/wcmio-archetype-commonjs (#111) @dependabot[bot]
• Update dependency mocha to v11.7.5 (#110) @renovate[bot]
• Lock file maintenance (#109) @renovate[bot]

1.10.0

What’s Changed

• Switch to ESM - update integration tests (#106) @​stefanseifert
• Switch to ESM (#105) @​Huntedpix
• Update dependency mocha to v11.7.4 (#102) @renovate[bot]
• Update dependency fs-extra to v11.3.2 (#101) @renovate[bot]
• Lock file maintenance (#104) @renovate[bot]
• Lock file maintenance (#100) @renovate[bot]

1.9.0

⚠ Breaking Changes

• minimum node.js versions now ^20.19.0 || ^22.12.0 || >=23

What’s Changed

• Have serializationFormat:xml follow the formatting rules of FileVault (#97) @​stefanseifert
• Update dependency yargs to v18 (#88) @renovate[bot]
• Update dependency mocha to v11.7.1 (#83) @renovate[bot]
• Lock file maintenance (#89) @renovate[bot]
• Update dependency mocha to v11.2.2 (#73) @renovate[bot]

1.8.2

What’s Changed

• Disable yargs strict mode (#72) @​stefanseifert

... (truncated)

Commits

• 14d7127 [npm] Release 2.0.0
• b7aac47 Lock file maintenance integration-test dependencies
• b15b3b1 Lock file maintenance
• b45bd69 Update dependency glob to v13 (#126)
• 611ab49 Bump js-yaml in /integration-test/wcmio-archetype-module-cjs
• 43ce443 Update dependency webpack to v5.104.1 [SECURITY]
• 7ae4980 Update integration-test dependencies (#114)
• 4a63954 Bump node-forge in /integration-test/wcmio-archetype-module
• c8b55d1 Lock file maintenance
• ca94df9 Bump webpack in /integration-test/wcmio-archetype-module
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by pvadmin, a new releaser for aem-clientlib-generator since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.