Bump bun from 1.3.5 to 1.3.6

[dependabot]

Bumps bun from 1.3.5 to 1.3.6.

Release notes

Sourced from bun's releases.

Bun v1.3.6

To install Bun v1.3.6

curl -fsSL https://bun.sh/install | bash
# or you can use npm
# npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.3.6:

bun upgrade

Read Bun v1.3.6's release notes on Bun's blog

Thanks to 23 contributors!

• @​alii
• @​billywhizz
• @​bmwalters
• @​cirospaciari
• @​d4mr
• @​darwin808
• @​dylan-conway
• @​emwadde
• @​franklinfollis
• @​jackkleeman
• @​jarred-sumner
• @​kjanat
• @​makuko
• @​mattermoran
• @​nektro
• @​nfreya
• @​nicocevallos
• @​rekram1-node
• @​remorses
• @​robobun
• @​sosukesuzuki
• @​sqdshguy
• @​veggiesaurus

Commits

• d530ed9 fix(css): restore handler context after minifying nested rules (#25997)
• 959169d feat(archive): change API to constructor-based with S3 support (#25940)
• 461ad88 fix(http): fix Strong reference leak in server response streaming (#25965)
• b6abbd5 fix(Bun.SQL): handle binary columns in MySQL correctly (#26011)
• beccd01 fix(FileSink): add Promise\<number> to FileSink.write() return type (#25962)
• 35eb539 deps: update sqlite to 3.51.200 (#25957)
• ebf39e9 fix(install): prevent use-after-free when retrying failed HTTP requests (#25949)
• b610e80 fix(http): properly handle pipelined data in CONNECT requests (#25938)
• 7076a49 feat(archive): add TypeScript types, docs, and files() benchmark (#25922)
• d4a966f fix(install): prevent symlink path traversal in tarball extraction (#25584)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 0.00%. Comparing base (c765a14) to head (c578c86).
⚠️ Report is 2 commits behind head on master.

Additional details and impacted files

@@          Coverage Diff           @@
##           master    #902   +/-   ##
======================================
  Coverage    0.00%   0.00%           
======================================
  Files           5       5           
  Lines          46      46           
  Branches        3       3           
======================================
  Misses         46      46           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.