build(deps-dev): bump nano from 10.1.4 to 11.0.4

[dependabot]

Bumps nano from 10.1.4 to 11.0.4.

Release notes

Sourced from nano's releases.

11.0.4

• Fix bug when supplying username/password data that included characters that get "percent encoded". apache/couchdb-nano#363

11.0.3

• add missing TypeScript definition for findAsStream

11.0.2

Added headers to TypeScript definition of the object that can be supplied when instantiating Nano.

11.0.1

Fix up response object so that Bun (and Node) users get sensible error messages. Thanks @​digitalextremist

• apache/couchdb-nano#358

11.0.0

• Replaces axios with the Node.js's built-in fetch for HTTP requests. 🕸️
• Replaces nock and jest with Node.js's build in testing framework. 🧪
• Removes support for callbacks. 📞
• Nano becomes a zero-dependency library. 👏
• Desiged for Node.js 20 and above (if you are still running older versions of Node then stick with Nano 10)

The vast majority of the API stays the same but there are some breaking changes. See Nano v10 to v11 Migration Guide.

Some background.

fetch

Originally Nano was built on top of the request library which was later deprecated. At this point I reworked it to use axios instead. This PR eliminates axios and other axios-related dependencies and instead uses the new kid on the block: the fetch API.

The fetch feature has found widespread adoption in web browsers as a means of handling outbound HTTP requests. It has found its way into Node.js as a global function and is marked as an experimental feature in Node 18/19 and is mainstream in Node 20 and beyond.

Node.js's fetch capability is powered by the undici package which is bundled with Node.js and in turn uses Node's low-level network libraries instead of being based on the higher-level http/https built-in modules. It purports to be significantly faster (according to its own benchmarks) than traffic routed through http/https modules, as is the case with other HTTP libraries like axios & request.

Commits

• c757679 Fix basicauth for credentials requiring percent encoding (#364)
• 90ac57f 11.0.3
• 3d9e754 added missing TypeScript definition for findAsStream (#361)
• 3d754f8 11.0.2
• 066fdb0 add customer headers to typescript definition
• 8dcfdd7 11.0.1
• e20ffea Capture error message, otherwise capture cause of HTTP failure (#358)
• 26fb0e1 Use fetch instead of axios (#314)
• ac8f4d0 Bump axios from 1.10.0 to 1.11.0 (#354)
• 2f648c8 asf.yaml format update as syntax was out-of-date (#353)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)