Update storybook (resolve pnpm audit errors)

[witoszekdev]

No description provided.

[changeset-bot]

🦋 Changeset detected

Latest commit: 9aa3a78

The changes in this PR will be included in the next version bump.

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

[Copilot]

Pull request overview

This pull request updates Storybook from version 9.x to 10.x (specifically 10.2.4) to resolve pnpm audit security vulnerabilities. The PR also adds the corresponding ESLint plugin for Storybook and includes necessary trust policy exclusions for transitive dependencies that haven't been updated yet.

Changes:

• Upgraded Storybook packages from 9.x to 10.2.4 (major version upgrade)
• Added eslint-plugin-storybook@10.2.4 for linting Storybook files
• Configured ESLint to use Storybook's recommended flat config
• Added trustPolicyExclude entries for various dependencies with security concerns

Reviewed changes

Copilot reviewed 4 out of 5 changed files in this pull request and generated no comments.

File	Description
pnpm-workspace.yaml	Added trustPolicyExclude entries for dependencies with audit issues to allow the upgrade while waiting for upstream fixes
package.json	Updated Storybook packages from 9.x to 10.2.4 and added eslint-plugin-storybook
eslint.config.mjs	Imported eslint-plugin-storybook, added its recommended config, and cleaned up formatting (removed extraneous blank lines)

[github-actions]

Differences Found

⚠️ 50 packages or licenses were added.

Expand

License	Package
<<missing>> @sentry/cli
<<missing>> @sentry/cli-darwin
<<missing>> @sentry/cli-linux-arm
<<missing>> @sentry/cli-linux-arm64
<<missing>> @sentry/cli-linux-i686
<<missing>> @sentry/cli-linux-x64
<<missing>> @sentry/cli-win32-arm64
<<missing>> @sentry/cli-win32-i686
<<missing>> @sentry/cli-win32-x64
Apache-2.0	@opentelemetry/api-logs
Apache-2.0	@opentelemetry/core
Apache-2.0	@opentelemetry/exporter-logs-otlp-http
Apache-2.0	@opentelemetry/otlp-exporter-base
Apache-2.0	@opentelemetry/otlp-transformer
Apache-2.0	@opentelemetry/resources
Apache-2.0	@opentelemetry/sdk-logs
Apache-2.0	@opentelemetry/sdk-metrics
Apache-2.0	@opentelemetry/sdk-trace-base
Apache-2.0	long
BSD-3-Clause	@protobufjs/aspromise
BSD-3-Clause	@protobufjs/base64
BSD-3-Clause	@protobufjs/codegen
BSD-3-Clause	@protobufjs/eventemitter
BSD-3-Clause	@protobufjs/fetch
BSD-3-Clause	@protobufjs/float
BSD-3-Clause	@protobufjs/inquire
BSD-3-Clause	@protobufjs/path
BSD-3-Clause	@protobufjs/pool
BSD-3-Clause	@protobufjs/utf8
BSD-3-Clause	protobufjs
BlueOak-1.0.0	jackspeak
BlueOak-1.0.0	package-json-from-dist
ISC	@isaacs/cliui
ISC	foreground-child
MIT	@posthog/types
MIT	@rollup/rollup-linux-loong64-musl
MIT	@rollup/rollup-linux-ppc64-musl
MIT	@rollup/rollup-openbsd-x64
MIT	@storybook/icons
MIT	bundle-name
MIT	default-browser
MIT	default-browser-id
MIT	eastasianwidth
MIT	empathic
MIT	eslint-plugin-storybook
MIT	is-inside-container
MIT	query-selector-shadow-dom
MIT	run-applescript
MIT	use-sync-external-store
MIT	wsl-utils

Summary

Expand

License Name	Package Count	Packages
0BSD	1	Packages tslib
CC0-1.0	1	Packages type-fest
MIT/X11	1	Packages nub
MPL-1.1	1	Packages harmony-reflect
MPL-2.0	1	Packages dompurify
Public Domain	1	Packages jsonify
Python-2.0	1	Packages argparse
WTFPL	1	Packages utf8-byte-length
CC-BY-4.0	2	Packages @saleor/macaw-ui caniuse-lite
SEE LICENSE IN LICENSE	2	Packages posthog-js spawndamnit
BlueOak-1.0.0	6	Packages glob jackspeak lru-cache minimatch package-json-from-dist path-scurry
<<missing>>	11	Packages @sentry/cli @sentry/cli-darwin @sentry/cli-linux-arm @sentry/cli-linux-arm64 @sentry/cli-linux-i686 @sentry/cli-linux-x64 @sentry/cli-win32-arm64 @sentry/cli-win32-i686 @sentry/cli-win32-x64 busboy streamsearch
BSD-2-Clause	23	Packages browser-process-hrtime css-select css-what domelementtype domhandler domutils dotenv dotenv-expand entities escodegen eslint-scope espree esprima esrecurse estraverse esutils nth-check regjsparser stringify-object terser And 3 more...
ISC	49	Packages @isaacs/cliui @istanbuljs/load-nyc-config anymatch boolbase cli-width cliui electron-to-chromium fastq flatted foreground-child fs.realpath get-caller-file get-own-enumerable-property-symbols glob glob-parent graceful-fs inflight inherits ini isexe And 29 more...
BSD-3-Clause	52	Packages @protobufjs/aspromise @protobufjs/base64 @protobufjs/codegen @protobufjs/eventemitter @protobufjs/fetch @protobufjs/float @protobufjs/inquire @protobufjs/path @protobufjs/pool @protobufjs/utf8 @saleor/app-sdk @sentry/cli @sentry/cli-darwin @sentry/cli-linux-arm @sentry/cli-linux-arm64 @sentry/cli-linux-i686 @sentry/cli-linux-x64 @sentry/cli-win32-i686 @sentry/cli-win32-x64 @sinonjs/commons And 32 more...
Apache-2.0	64	Packages @editorjs/editorjs @eslint/config-array @eslint/config-helpers @eslint/core @eslint/object-schema @eslint/plugin-kit @humanfs/core @humanfs/node @humanwhocodes/module-importer @humanwhocodes/retry @opentelemetry/api @opentelemetry/api-logs @opentelemetry/core @opentelemetry/exporter-logs-otlp-http @opentelemetry/otlp-exporter-base @opentelemetry/otlp-transformer @opentelemetry/resources @opentelemetry/sdk-logs @opentelemetry/sdk-metrics @opentelemetry/sdk-trace-base And 44 more...
MIT	1304	Packages @adobe/css-tools @apollo/client @ardatan/relay-compiler @ardatan/sync-fetch @babel/code-frame @babel/compat-data @babel/core @babel/generator @babel/helper-annotate-as-pure @babel/helper-compilation-targets @babel/helper-create-class-features-plugin @babel/helper-globals @babel/helper-member-expression-to-functions @babel/helper-module-imports @babel/helper-module-transforms @babel/helper-optimise-call-expression @babel/helper-plugin-utils @babel/helper-replace-supers @babel/helper-skip-transparent-expression-wrappers @babel/helper-string-parser And 1284 more...

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 42.59%. Comparing base (61a484d) to head (9aa3a78).
⚠️ Report is 1 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main    #6317   +/-   ##
=======================================
  Coverage   42.59%   42.59%           
=======================================
  Files        2497     2497           
  Lines       43401    43401           
  Branches    10271    10232   -39     
=======================================
  Hits        18485    18485           
  Misses      23590    23590           
  Partials     1326     1326           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.