[Snyk] Upgrade sharp from 0.34.4 to 0.34.5

[man8]

Snyk has created this PR to upgrade sharp from 0.34.4 to 0.34.5.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 3 versions ahead of your current version.

• The recommended version was released 23 days ago.

Release notes

Package name: sharp

• 0.34.5 - 2025-11-06
  

  • Upgrade to libvips v8.17.3 for upstream bug fixes.

  • Add experimental support for prebuilt Linux RISC-V 64-bit binaries.

  • Support building from source with npm v12+, deprecate --build-from-source flag.
    #4458

  • Add support for BigTIFF output.
    #4459
    @ throwbi

  • Improve error messaging when only warnings issued.
    #4465

  • Simplify ICC processing when retaining input profiles.
    #4468

• 0.34.5-rc.1 - 2025-11-06
  

  • Upgrade to libvips v8.17.3 for upstream bug fixes.

  • Add experimental support for prebuilt Linux RISC-V 64-bit binaries.

  • Support building from source with npm v12+, deprecate --build-from-source flag.
    #4458

  • Add support for BigTIFF output.
    #4459
    @ throwbi

  • Improve error messaging when only warnings issued.
    #4465

  • Simplify ICC processing when retaining input profiles.
    #4468

• 0.34.5-rc.0 - 2025-11-05
  

  • Upgrade to libvips v8.17.3 for upstream bug fixes.

  • Add experimental support for prebuilt Linux RISC-V 64-bit binaries.

  • Support building from source with npm v12+, deprecate --build-from-source flag.
    #4458

  • Add support for BigTIFF output.
    #4459
    @ throwbi

  • Improve error messaging when only warnings issued.
    #4465

  • Simplify ICC processing when retaining input profiles.
    #4468

• 0.34.4 - 2025-09-17
  

  • Upgrade to libvips v8.17.2 for upstream bug fixes.

  • Ensure TIFF subifd and OpenSlide level input options are respected (regression in 0.34.3).

  • Ensure autoOrient occurs before non-90 angle rotation.
    #4425

  • Ensure autoOrient removes existing metadata after shrink-on-load.
    #4431

  • TypeScript: Ensure KernelEnum includes linear.
    #4441
    @ BayanBennett

  • Ensure unlimited flag is passed upstream when reading TIFF images.
    #4446

  • Support Electron memory cage when reading XMP metadata (regression in 0.34.3).
    #4451

  • Add sharp-libvips rpath for yarn v5 support.
    #4452
    @ arcanis

from sharp GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

---

Note

Upgrade sharp to 0.34.5 with updated platform binaries and transitive deps (incl. semver, @emnapi/runtime), adding Linux RISC-V support; lockfile refreshed.

• Dependencies:
  • Upgrade sharp from 0.34.4 to 0.34.5 in package.json.
  • Refresh lockfile to new sharp and platform-specific packages (@img/sharp-*) and libvips (1.2.4).
    • Adds new riscv64 variants for Linux.
  • Bump transitive deps: semver 7.7.2 -> 7.7.3, @emnapi/runtime 1.5.0 -> 1.7.1, detect-libc updated via sharp.

^{Written by Cursor Bugbot for commit 5fc26f6. This will update automatically on new commits. Configure here.}