fix!: set minimum Node support to v20.17

.github/dependabot.yml

@@ -7,11 +7,19 @@ version: 2
 updates:
   - package-ecosystem: "npm" # See documentation for possible values
     directory: "/" # Location of package manifests
+    # https://github.com/dependabot/dependabot-core/issues/5226
+    versioning-strategy: "increase"
     schedule:
-      interval: "daily"
+      interval: "weekly"
     labels:
       - dependencies
+    ignore:
+      - dependency-name: "@types/node"
+        versions: ">=21.0.0"
+    groups:
+      development:
+        dependency-type: "development"
     commit-message:
       prefix: fix
       prefix-development: chore
-      include: scope
+      include: scope

.github/workflows/node.js.yml

@@ -1,31 +1,25 @@
-# This workflow will do a clean installation of node dependencies, cache/restore them, build the source code and run tests across different versions of node
-# For more information see: https://help.github.com/actions/language-and-framework-guides/using-nodejs-with-github-actions
-
 name: Node.js CI
-
 on:
   push:
-    branches: [ main, next, 1.x ]
+    branches:
+      - main
   pull_request:
-    branches: [ main, next, 1.x ]
-
+    branches:
+      - main
 jobs:
   build:
-
     runs-on: ubuntu-latest
-
     strategy:
       matrix:
-        node-version: [18.x, 20.x, 22.x]
-        # See supported Node.js release schedule at https://nodejs.org/en/about/releases/
-
+        node-version:
+          - 20.x
+          - 22.x
+          - 24.x
     steps:
-    - uses: actions/checkout@v4
-    - name: Use Node.js ${{ matrix.node-version }}
-      uses: actions/setup-node@v4
-      with:
-        node-version: ${{ matrix.node-version }}
-        cache: 'npm'
-    - run: npm ci
-    - run: npm test
-    - run: npm run build --if-present
+      - uses: actions/checkout@v4
+      - name: Use Node.js ${{ matrix.node-version }}
+        uses: actions/setup-node@v4
+        with:
+          node-version: ${{ matrix.node-version }}
+      - run: npm ci
+      - run: npm run ci

.github/workflows/release-please.yml

@@ -2,26 +2,19 @@ on:
   push:
     branches:
       - main
+  workflow_dispatch:
+    inputs: {}
+
+permissions:
+  contents: write
+  pull-requests: write
+
 name: release-please
+
 jobs:
-   release-please:
-     runs-on: ubuntu-latest
-     steps:
-       - uses: googleapis/release-please-action@v4
-         with:
-           token: ${{ secrets.GH_PUSH_TOKEN }}
-           release-type: node
-       - uses: actions/checkout@v4
-         if: ${{ steps.release.outputs.release_created }}
-       - uses: actions/setup-node@v4
-         with:
-           node-version-file: '.nvmrc'
-           cache: 'npm'
-           registry-url: 'https://registry.npmjs.org'
-         if: ${{ steps.release.outputs.release_created }}
-       - run: npm ci
-         if: ${{ steps.release.outputs.release_created }}
-       - run: npm publish
-         env:
-           NODE_AUTH_TOKEN: ${{secrets.NPM_TOKEN}}
-         if: ${{ steps.release.outputs.release_created }}
+  release-please:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: googleapis/release-please-action@v4
+        with:
+          release-type: node

.nvmrc

@@ -1 +1 @@
-20
+20.17

lib/validator/policy-validator.ts

@@ -1,6 +1,6 @@
 import { Ajv, ValidateFunction } from "ajv";
 import jsonLogic from "json-logic-js";
-import * as defaultSchema from "../../schemas/policy-2023-02.schema.json";
+import * as defaultSchema from "../../schemas/policy-2023-02.schema.json" with { type: "json" };
 import { JsonLogicParser, JsonSchema, PolicyDocument } from "../types.js";
 import { arrayify } from "../utils/arr.js";
 import {