Guest frames pass an identifier for their associated browser frame to the
sidebar. The sidebar in turn uses this identifier as a key to refer to different
guests in various places. This identifier used to be sent as part of the
`documentInfoChanged` message after a guest <-> sidebar connection is
established, rather than as part of the initial connection metadata. As a result
the sidebar had to invent a temporary ID for the new guest, which was used until
it learned the real ID.

This commit simplifies the picture by adding a `sourceId` attribute to frame
connection setup messages. This replaces the `frameIdentifier` in the
`documentInfoChanged` message, and allows the sidebar to know the final ID of
the guest as soon as it connects.

Add the plumbing needed to make the VitalSource integration return either the
book or chapter URL depending on the value of the "book_as_single_document"
flag. Additionally handle changes in this flag after the integration is created
by notifying the guest about the URI change.

When the flag is enabled, the "book URL" is currently a placeholder that will
in future be replaced by a real value fetched from the `<mosaic-book>`
element in the container frame.

This will hopefully resolve a bunch of warnings about deprecations in the logs
of CI and release workflows.

This doesn't actually matter at present as the `<mosaic-book>` element
is already present in the DOM, with the "book" attribute set, when the
MosaicBookElement constructor is called. However it would matter if the
element were programatically created in future.

Refactor MosaicBookElement so that it can be used for both the EPUB and
PDF book test cases.

We only want to exclude the vendored PDF.js code from Prettier formatting. The
other small scripts in dev-server/static/scripts/ should be formatted.

As part of the work to treat VitalSource books as a single document, the
VitalSource integration will use additional APIs exposed by the `<mosaic-book>`
element which will need to be mocked. Extract the existing implementation out of
vitalsource-epub.mustache so it can in future be re-used by the mock VitalSource
PDF book, and also because a standalone JS file is easier to apply tools to (eg.
Prettier).

This is a purely syntactic change, except for a small simplification of
a callback type in frame-observer.js. This is in preparation for a bunch
of upcoming changes to this integration.

This is a purely syntactic change. There are no changes to the types or
documentation, except for the removal of an unused `groups` property on the
`Profile` type.

The TypeScript compiler does not require type definitions to come before their
use, so this is a stylistic preference.

Per the docs [1], it is necessary to first disable ESLint's no-use-before-define
rule to avoid incorrect warnings in TS code, and then enable the corresponding
TS version with `ignoreTypeReferences` and `typedefs` set as desired.

[1] https://typescript-eslint.io/rules/no-use-before-define

This is a purely syntactic change. The documentation and types are the same as
before. One thing to note about using TS syntax is that a module only exports
types which are explicitly marked for export, whereas in JS any types defined in
the module or imported from elsewhere are exported.

Bumps [tailwindcss](https://github.com/tailwindlabs/tailwindcss) from 3.1.8 to 3.2.1.
- [Release notes](https://github.com/tailwindlabs/tailwindcss/releases)
- [Changelog](https://github.com/tailwindlabs/tailwindcss/blob/master/CHANGELOG.md)
- [Commits](https://github.com/tailwindlabs/tailwindcss/compare/v3.1.8...v3.2.1)

---
updated-dependencies:
- dependency-name: tailwindcss
  dependency-type: direct:development
  update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>

Bumps [katex](https://github.com/KaTeX/KaTeX) from 0.16.2 to 0.16.3.
- [Release notes](https://github.com/KaTeX/KaTeX/releases)
- [Changelog](https://github.com/KaTeX/KaTeX/blob/main/CHANGELOG.md)
- [Commits](https://github.com/KaTeX/KaTeX/compare/v0.16.2...v0.16.3)

---
updated-dependencies:
- dependency-name: katex
  dependency-type: direct:development
  update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>

Bumps [@rollup/plugin-json](https://github.com/rollup/plugins/tree/HEAD/packages/json) from 5.0.0 to 5.0.1.
- [Release notes](https://github.com/rollup/plugins/releases)
- [Changelog](https://github.com/rollup/plugins/blob/master/packages/json/CHANGELOG.md)
- [Commits](https://github.com/rollup/plugins/commits/url-v5.0.1/packages/json)

---
updated-dependencies:
- dependency-name: "@rollup/plugin-json"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>

Bumps [@babel/core](https://github.com/babel/babel/tree/HEAD/packages/babel-core) from 7.19.3 to 7.19.6.
- [Release notes](https://github.com/babel/babel/releases)
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md)
- [Commits](https://github.com/babel/babel/commits/v7.19.6/packages/babel-core)

---
updated-dependencies:
- dependency-name: "@babel/core"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>

Bumps [@rollup/plugin-commonjs](https://github.com/rollup/plugins/tree/HEAD/packages/commonjs) from 23.0.0 to 23.0.2.
- [Release notes](https://github.com/rollup/plugins/releases)
- [Changelog](https://github.com/rollup/plugins/blob/master/packages/commonjs/CHANGELOG.md)
- [Commits](https://github.com/rollup/plugins/commits/commonjs-v23.0.2/packages/commonjs)

---
updated-dependencies:
- dependency-name: "@rollup/plugin-commonjs"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>

Bumps [@rollup/plugin-babel](https://github.com/rollup/plugins/tree/HEAD/packages/babel) from 6.0.0 to 6.0.2.
- [Release notes](https://github.com/rollup/plugins/releases)
- [Changelog](https://github.com/rollup/plugins/blob/master/packages/babel/CHANGELOG.md)
- [Commits](https://github.com/rollup/plugins/commits/babel-v6.0.2/packages/babel)

---
updated-dependencies:
- dependency-name: "@rollup/plugin-babel"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>

Bumps [mocha](https://github.com/mochajs/mocha) from 10.0.0 to 10.1.0.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v10.0.0...v10.1.0)

---
updated-dependencies:
- dependency-name: mocha
  dependency-type: direct:development
  update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>

Bumps [@sentry/browser](https://github.com/getsentry/sentry-javascript) from 7.15.0 to 7.16.0.
- [Release notes](https://github.com/getsentry/sentry-javascript/releases)
- [Changelog](https://github.com/getsentry/sentry-javascript/blob/master/CHANGELOG.md)
- [Commits](https://github.com/getsentry/sentry-javascript/compare/7.15.0...7.16.0)

---
updated-dependencies:
- dependency-name: "@sentry/browser"
  dependency-type: direct:development
  update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>

Bumps [@rollup/plugin-virtual](https://github.com/rollup/plugins/tree/HEAD/packages/virtual) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/rollup/plugins/releases)
- [Changelog](https://github.com/rollup/plugins/blob/master/packages/virtual/CHANGELOG.md)
- [Commits](https://github.com/rollup/plugins/commits/dsv-v3.0.1/packages/virtual)

---
updated-dependencies:
- dependency-name: "@rollup/plugin-virtual"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>

Update the code for listing the files that would go into the npm package.
npm-packlist v7 removed the internal logic for using Arborist and instead
requires the caller to do this instead. The new code follows the current example
in the npm-packlist README [1].

This unfortunately means adding an extra dependency. An alternative approach
would be to invoke `npm package` to generate a tarball, then unpack that tarball
somewhere and read its contents using file system APIs.

[1] https://github.com/npm/npm-packlist#npm-packlist

Bumps [npm-packlist](https://github.com/npm/npm-packlist) from 6.0.1 to 7.0.1.
- [Release notes](https://github.com/npm/npm-packlist/releases)
- [Changelog](https://github.com/npm/npm-packlist/blob/main/CHANGELOG.md)
- [Commits](https://github.com/npm/npm-packlist/compare/v6.0.1...v7.0.1)

---
updated-dependencies:
- dependency-name: npm-packlist
  dependency-type: direct:development
  update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>

Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) from 5.39.0 to 5.40.1.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.40.1/packages/parser)

---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
  dependency-type: direct:development
  update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>

As `MenuArrow` now uses two icons — `PointerUpIcon` and
`PointerDownIcon` — instead of a CSS transform (rotate 180 degrees)
for the down variant, absolute positioning had to be adjusted in the
components that use this arrow.

A future enhancement might be to make positioning easier/unnecessary for
components using `MenuArrow`. Some additional comments have been added
for now.

The shared components in `AutocompleteList` are also updated here.

This reverts commit 32074657.

Bumps [puppeteer](https://github.com/puppeteer/puppeteer) from 18.2.1 to 19.0.0.
- [Release notes](https://github.com/puppeteer/puppeteer/releases)
- [Changelog](https://github.com/puppeteer/puppeteer/blob/main/release-please-config.json)
- [Commits](https://github.com/puppeteer/puppeteer/compare/puppeteer-core-v18.2.1...puppeteer-core-v19.0.0)

---
updated-dependencies:
- dependency-name: puppeteer
  dependency-type: direct:development
  update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>

Bumps [preact](https://github.com/preactjs/preact) from 10.11.1 to 10.11.2.
- [Release notes](https://github.com/preactjs/preact/releases)
- [Commits](https://github.com/preactjs/preact/compare/10.11.1...10.11.2)

---
updated-dependencies:
- dependency-name: preact
  dependency-type: direct:development
  update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>

Bumps [postcss](https://github.com/postcss/postcss) from 8.4.17 to 8.4.18.
- [Release notes](https://github.com/postcss/postcss/releases)
- [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md)
- [Commits](https://github.com/postcss/postcss/compare/8.4.17...8.4.18)

---
updated-dependencies:
- dependency-name: postcss
  dependency-type: direct:development
  update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>

Bumps [eslint-plugin-react](https://github.com/jsx-eslint/eslint-plugin-react) from 7.31.9 to 7.31.10.
- [Release notes](https://github.com/jsx-eslint/eslint-plugin-react/releases)
- [Changelog](https://github.com/jsx-eslint/eslint-plugin-react/blob/master/CHANGELOG.md)
- [Commits](https://github.com/jsx-eslint/eslint-plugin-react/compare/v7.31.9...v7.31.10)

---
updated-dependencies:
- dependency-name: eslint-plugin-react
  dependency-type: direct:development
  update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>

Bumps [aws-sdk](https://github.com/aws/aws-sdk-js) from 2.1231.0 to 2.1233.0.
- [Release notes](https://github.com/aws/aws-sdk-js/releases)
- [Changelog](https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-js/compare/v2.1231.0...v2.1233.0)

---
updated-dependencies:
- dependency-name: aws-sdk
  dependency-type: direct:development
  update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>

Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) from 5.39.0 to 5.40.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.40.0/packages/eslint-plugin)

---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
  dependency-type: direct:development
  update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>

Bumps [@rollup/plugin-virtual](https://github.com/rollup/plugins/tree/HEAD/packages/virtual) from 2.1.0 to 3.0.0.
- [Release notes](https://github.com/rollup/plugins/releases)
- [Changelog](https://github.com/rollup/plugins/blob/master/packages/virtual/CHANGELOG.md)
- [Commits](https://github.com/rollup/plugins/commits/dsv-v3.0.0/packages/virtual)

---
updated-dependencies:
- dependency-name: "@rollup/plugin-virtual"
  dependency-type: direct:development
  update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>

Bumps [@octokit/rest](https://github.com/octokit/rest.js) from 19.0.4 to 19.0.5.
- [Release notes](https://github.com/octokit/rest.js/releases)
- [Commits](https://github.com/octokit/rest.js/compare/v19.0.4...v19.0.5)

---
updated-dependencies:
- dependency-name: "@octokit/rest"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>

Continue using the legacy `allowFullScreen` attribute on the Notebook
Modal's `iframe` element until the preferred `allow` attribute is
available in all supported browsers.

See https://developer.mozilla.org/en-US/docs/Web/HTML/Element/iframe#attr-allow