chore(deps): update dependency taskcluster-client to v76

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
taskcluster-client (source)	73.0.0 -> 76.0.0

---

Release Notes

taskcluster/taskcluster (taskcluster-client)

v76.0.0

Compare Source

GENERAL

▶ [patch]
Upgrades to Node.js v22.12.0, go v1.23.4, and yarn v4.5.3.

USERS

▶ [MAJOR] #​3823
Add authentication to websockets at the time of subscribing to pulse messages

This introduces new scope web:read-pulse that needs to be added to the existing anonymous role
in order to keep Pulse subscriptions public.

▶ [patch] #​4086
queue.getArtifact() checks if artifact is expired and returns ResourceExpired - 410 in such cases

Automated Package Updates

1 Dependabot updates

• build(deps): bump the node-deps group across 1 directory with 4 updates (2edd60b)

v75.0.1

Compare Source

WORKER-DEPLOYERS

▶ [patch] #​7404
Generic Worker: Reverting 61b985d due to issue #​7404 with cache permissions.

Automated Package Updates

6 Dependabot updates

• build(deps): bump the node-deps group across 1 directory with 17 updates (8607b9d)
• build(deps): bump taskcluster from 74.0.0 to 75.0.0 in /taskcluster (3565e2b)
• build(deps): bump taskcluster-taskgraph (94375c1)
• build(deps): bump the go-deps group with 5 updates (b724509)
• build(deps-dev): bump the client-web-node-deps group (5a81717)
• build(deps): bump the client-node-deps group (76501c5)

v75.0.0

Compare Source

USERS

▶ [MAJOR] #​7128
Generic Worker now only changes file ownership of files inside caches, if the
file was owned by the previous task user. Previously Generic Worker changed the
ownership of all files inside a cache to be the new task user, which caused
problems if files were modified inside containers using different subuids.

▶ [patch] #​7386
Fixes UI issue where "No WorkerPool exists" error was shown in pending/claimed tasks list.

Automated Package Updates

6 Dependabot updates

• build(deps): bump cross-spawn from 7.0.3 to 7.0.6 in /clients/client (8f1ae70)
• build(deps): bump cross-spawn from 7.0.3 to 7.0.6 in /ui/test/e2e (ba80be7)
• build(deps): bump cross-spawn from 6.0.5 to 6.0.6 in /ui (b61b373)
• build(deps): bump cross-spawn from 7.0.3 to 7.0.6 in /clients/client-web (34e12e1)
• build(deps): bump cross-spawn from 6.0.5 to 6.0.6 (1204a00)
• build(deps): bump @​eslint/plugin-kit in /clients/client-web (df1f054)

v74.0.1

Compare Source

GENERAL

▶ [patch]
D2G: ConvertScopes() additionally checks scopes for loopbackAudio and loopbackVideo.

▶ [patch]
D2G: ConvertScopes() checks all scopes at once so users would see all missing scopes in one run.

▶ [patch]
Upgrades to go1.23.3.

▶ [patch]
Upgrades to the new Node.js LTS version 22.11.0

DEVELOPERS

▶ [patch] #​7246
Add linting rule for spaces before and after keywords
Add linting rule to remove spaces inside round parenthesis

Automated Package Updates

8 Dependabot updates

• build(deps): bump matrix-js-sdk from 34.9.0 to 34.11.1 (221b10b)
• build(deps): bump the client-node-deps group across 1 directory with 2 updates (8a7ee71)
• build(deps): bump github.com/golang-jwt/jwt/v4 from 4.5.0 to 4.5.1 (19586b5)
• build(deps): bump taskcluster-taskgraph in /taskcluster (b05031f)
• build(deps): bump the node-deps group with 30 updates (7c778cb)
• build(deps-dev): bump the client-web-node-deps group (08362e2)
• build(deps): bump taskcluster from 72.0.1 to 74.0.0 in /taskcluster (bc8269d)
• build(deps): bump the go-deps group with 6 updates (1e5054f)

v74.0.0

Compare Source

GENERAL

▶ [patch]
Upgrades to Node.js 20.18.0 and yarn 4.5.1

WORKER-DEPLOYERS

▶ [MAJOR]
D2G: Renamed methods Convert() --> ConvertPayload() and Scopes() --> ConvertScopes().

D2G: ConvertScopes() checks that the provided docker worker payload is valid with the supplied scopes. Generic Worker will now resolve a docker worker task as exception/malformed-payload if any required docker worker scopes are missing for its payload.

▶ [MAJOR] #​7320
Reverts PR #​7324. Taskcluster Proxy will now only listen on 127.0.0.1.

USERS

▶ [patch] #​7340
D2G: Use unique task container names to avoid container naming conflicts.

DEVELOPERS

▶ [patch]
Fixed the rust library for uploading artifact when the object service returned
a content-length header. It will now avoid duping the header which was
resulting in 400s from upstream object storages.

▶ [patch]
The rust client will now properly fail when the PUT url call returns an error
while uploading an artifact.

Automated Package Updates

3 Dependabot updates

• build(deps): bump elliptic from 6.5.7 to 6.6.0 in /ui (11ebddc)
• build(deps): bump elliptic from 6.5.7 to 6.6.0 in /clients/client-web (eef39b1)
• build(deps): bump matrix-js-sdk from 25.1.1 to 34.8.0 (#​7330) (73da29d)

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.