fix(deps): update dependency dotenv to v17

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
dotenv	^16.4.5 → ^17.0.0

---

Release Notes

motdotla/dotenv (dotenv)

v17.4.2

Compare Source

v17.4.1

Compare Source

v17.4.0

Compare Source

v17.3.1

Compare Source

Changed

• Fix as2 example command in README and update spanish README

v17.3.0

Compare Source

Added

• Add a new README section on dotenv’s approach to the agentic future.

Changed

• Rewrite README to get humans started more quickly with less noise while simultaneously making more accessible for llms and agents to go deeper into details.

v17.2.4

Compare Source

Changed

• Make DotenvPopulateInput accept NodeJS.ProcessEnv type (#​915)

• Give back to dotenv by checking out my newest project vestauth. It is auth for agents. Thank you for using my software.

v17.2.3

Compare Source

Changed

• Fixed typescript error definition (#​912)

v17.2.2

Compare Source

Added

• 🙏 A big thank you to new sponsor Tuple.app - the premier screen sharing app for developers on macOS and Windows. Go check them out. It's wonderful and generous of them to give back to open source by sponsoring dotenv. Give them some love back.

v17.2.1

Compare Source

Changed

• Fix clickable tip links by removing parentheses (#​897)

v17.2.0

Compare Source

Added

• Optionally specify DOTENV_CONFIG_QUIET=true in your environment or .env file to quiet the runtime log (#​889)
• Just like dotenv any DOTENV_CONFIG_ environment variables take precedence over any code set options like ({quiet: false})

v17.1.0

Compare Source

Added

• Add additional security and configuration tips to the runtime log (#​884)
• Dim the tips text from the main injection information text

const TIPS = [
  '🔐 encrypt with dotenvx: https://dotenvx.com',
  '🔐 prevent committing .env to code: https://dotenvx.com/precommit',
  '🔐 prevent building .env in docker: https://dotenvx.com/prebuild',
  '🛠️  run anywhere with `dotenvx run -- yourcommand`',
  '⚙️  specify custom .env file path with { path: \'/custom/path/.env\' }',
  '⚙️  enable debug logging with { debug: true }',
  '⚙️  override existing env vars with { override: true }',
  '⚙️  suppress all logs with { quiet: true }',
  '⚙️  write to custom object with { processEnv: myObject }',
  '⚙️  load multiple .env files with { path: [\'.env.local\', \'.env\'] }'
]

v17.0.1

Compare Source

Changed

• Patched injected log to count only populated/set keys to process.env (#​879)

v17.0.0

Compare Source

Changed

• Default quiet to false - informational (file and keys count) runtime log message shows by default (#​875)

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • Between 12:00 AM and 03:59 AM, only on Monday (* 0-3 * * 1)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[codecov-commenter]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 89.72%. Comparing base (4c52549) to head (3e2d6b6).
⚠️ Report is 2 commits behind head on next.

Additional details and impacted files

@@           Coverage Diff           @@
##             next    #1457   +/-   ##
=======================================
  Coverage   89.72%   89.72%           
=======================================
  Files         177      177           
  Lines       26965    26965           
  Branches     2258     2258           
=======================================
  Hits        24195    24195           
  Misses       2770     2770           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[renovate]

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: pnpm-lock.yaml

packages/credential-ld                   | [WARN] The field "resolutions" was found in /tmp/renovate/repos/github/decentralized-identity/veramo/packages/credential-ld/package.json. This will not take effect. Configure dependency overrides in pnpm-workspace.yaml using the "overrides" field instead.
packages/did-provider-key                | [WARN] The field "resolutions" was found in /tmp/renovate/repos/github/decentralized-identity/veramo/packages/did-provider-key/package.json. This will not take effect. Configure dependency overrides in pnpm-workspace.yaml using the "overrides" field instead.
packages/did-provider-peer               | [WARN] The field "resolutions" was found in /tmp/renovate/repos/github/decentralized-identity/veramo/packages/did-provider-peer/package.json. This will not take effect. Configure dependency overrides in pnpm-workspace.yaml using the "overrides" field instead.
Scope: all 36 workspace projects
Progress: resolved 1, reused 0, downloaded 0, added 0
.                                        | [WARN] deprecated uuid@9.0.1
packages/cli                             | [WARN] deprecated @types/node-fetch@3.0.3
packages/data-store-json                 | [WARN] deprecated @ungap/structured-clone@1.3.0
Progress: resolved 98, reused 1, downloaded 0, added 0
packages/kv-store                        | [WARN] deprecated eslint@8.57.1
Progress: resolved 120, reused 1, downloaded 0, added 0
Progress: resolved 150, reused 1, downloaded 0, added 0
Progress: resolved 210, reused 1, downloaded 0, added 0
Progress: resolved 385, reused 1, downloaded 0, added 0
Progress: resolved 541, reused 1, downloaded 0, added 0
Progress: resolved 625, reused 1, downloaded 0, added 0
/tmp/renovate/repos/github/decentralized-identity/veramo/packages/credential-ld:
[ERR_PNPM_EXOTIC_SUBDEP] Exotic dependency "jsonld" (resolved via git-repository) is not allowed in subdependencies when blockExoticSubdeps is enabled

This error happened while installing the dependencies of @digitalcredentials/jsonld-signatures@10.1.0