Update dependency js-cookie to v3.0.7

[gardener-ci-robot]

This PR contains the following updates:

Package	Change	Age	Confidence
js-cookie	3.0.5 → 3.0.7

---

Release Notes

js-cookie/js-cookie (js-cookie)

v3.0.7

Compare Source

• Prevent cookie attribute injection: CVE-2026-46625 (eb3c40e)
• Add Partitioned attribute to readme (b994768)
• Publish to npm registry via trusted publisher exclusively (4dc71be)
• Ensure consistent behaviour for get('name') + get() (1953d30)

v3.0.6

Compare Source

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • At any time (no schedule defined)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate.

[gardener-prow]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please assign petersutter for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 60c64483-0c0a-4d12-adb8-f151dcfa59d6

📥 Commits

Reviewing files that changed from the base of the PR and between d0985b3 and 5e5c72e.

⛔ Files ignored due to path filters (2)

• .yarn/cache/js-cookie-npm-3.0.7-a7a36a5505-c921c43014.zip is excluded by !**/.yarn/**, !**/*.zip
• yarn.lock is excluded by !**/yarn.lock, !**/*.lock

📒 Files selected for processing (1)

• .pnp.cjs

---

📝 Walkthrough

Walkthrough

Updates the bundled js-cookie npm dependency from version 3.0.5 to 3.0.7 in the Yarn PnP cache manifest (.pnp.cjs), modifying both the top-level dependency registry entry and the nested package metadata to reference the new version.

Changes

js-cookie version update

Layer / File(s)	Summary
js-cookie 3.0.5 → 3.0.7 version update .pnp.cjs	Top-level dependency version entry and nested cached-package metadata for js-cookie are updated together from version 3.0.5 to 3.0.7, including packageLocation and packageDependencies references.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

Possibly related PRs

• gardener/dashboard#2798: Similar dependency version bump in .pnp.cjs for a different package, following the same pattern of updating both top-level and cached metadata entries.

Suggested labels

size/S

Suggested reviewers

• holgerkoser
• grolu
• klocke-io

Poem

🐰 A cookie jar update, small and neat,
From 3.0.5 to 3.0.7 sweet,
The manifest speaks in manifest tongue,
Two references change, now perfectly sung! 🍪✨

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Description check	⚠️ Warning	The description includes relevant release notes and dependency update information, but does not follow the required template structure with area/kind labels and release note sections.	Add required template sections: categorize with /area and /kind labels, fill 'What this PR does / why we need it' section, and complete the release note section properly.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title clearly and concisely summarizes the main change: updating the js-cookie dependency to v3.0.7, which matches the changeset.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

📝 Generate docstrings

• Create stacked PR
• Commit on current branch

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch renovate/js-cookie-3.x-lockfile

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}