Bump cookie and lighthouse in /tests/performance_tests

[dependabot]

Removes cookie. It's no longer used after updating ancestor dependency lighthouse. These dependencies need to be updated together.

Removes cookie

Updates lighthouse from 10.1.1 to 12.4.0

Release notes

Sourced from lighthouse's releases.

v12.4.0

Full Changelog

We expect this release to ship in the DevTools of Chrome 135, and to PageSpeed Insights within 2 weeks.

New contributors

Thanks to our new contributors 👽🐷🐰🐯🐻!

• Daniil Vangonen @​dvangonen
• Rene Schwietzke @​rschwietzke
• Antti @​hilja
• Johannes Homeier @​homj

Notable Changes

• Some performance audits are marked as informative under passing conditions rather than being hidden in the passed audits section. This release reduces the number of audits which have this behavior. (#16315)

New Audits

• ensure clickjacking mitigation through XFO or CSP (#16290)

Core

• implement more insight audits, handle localization (#16326)
• set relevant metric based on insight category (#16325)
• add hidden audits for each insight (#16312)
• cls-culprits-insight: implement (#16357)
• inspector-issues: support SRI message signature issues (#16345)
• inspector-issues: add select element a11y issue to types (#16298)
• legacy-javascript: upgrade babel and core-js (#16331)
• root-causes: grab from trace insights rather than use protocol (#16352)
• trace-engine: re-enable invalidations handler (#16293)

Report

• use container queries for responsive design in DevTools (#16342)
• render LH-only diagnostics alongside insights (#16332)
• add button to toggle experimental insights (#16329)
• add checklist detail type (#16324)

Deps

• upgrade critical dependencies (#16358)
• upgrade csp_evaluator to 1.1.5 (#16347)
• update to latest chrome-devtools-frontend (#16333)
• upgrade puppeteer to 24.2.1 (#16341)
• upgrade third-party-web to 0.26.5 (#16340)
• upgrade puppeteer to 24.1.1 (#16302)
• upgrade trace_engine to 0.0.40 (#16311)

... (truncated)

Changelog

Sourced from lighthouse's changelog.

12.4.0 (2025-02-26)

Full Changelog

We expect this release to ship in the DevTools of Chrome 135, and to PageSpeed Insights within 2 weeks.

New contributors

Thanks to our new contributors 👽🐷🐰🐯🐻!

• Daniil Vangonen @​dvangonen
• Rene Schwietzke @​rschwietzke
• Antti @​hilja
• Johannes Homeier @​homj

Notable Changes

• Some performance audits are marked as informative under passing conditions rather than being hidden in the passed audits section. This release reduces the number of audits which have this behavior. (#16315)

New Audits

• ensure clickjacking mitigation through XFO or CSP (#16290)

Core

• implement more insight audits, handle localization (#16326)
• set relevant metric based on insight category (#16325)
• add hidden audits for each insight (#16312)
• cls-culprits-insight: implement (#16357)
• inspector-issues: support SRI message signature issues (#16345)
• inspector-issues: add select element a11y issue to types (#16298)
• legacy-javascript: upgrade babel and core-js (#16331)
• root-causes: grab from trace insights rather than use protocol (#16352)
• trace-engine: re-enable invalidations handler (#16293)

Report

• use container queries for responsive design in DevTools (#16342)
• render LH-only diagnostics alongside insights (#16332)
• add button to toggle experimental insights (#16329)
• add checklist detail type (#16324)

Deps

• upgrade critical dependencies (#16358)
• upgrade csp_evaluator to 1.1.5 (#16347)
• update to latest chrome-devtools-frontend (#16333)
• upgrade puppeteer to 24.2.1 (#16341)
• upgrade third-party-web to 0.26.5 (#16340)
• upgrade puppeteer to 24.1.1 (#16302)
• upgrade trace_engine to 0.0.40 (#16311)

... (truncated)

Commits

• 37284c9 v12.4.0 (#16361)
• 0cd0d0d i18n: import (#16360)
• c17ed57 misc(release): add script for updating critical dependencies (#16359)
• 9586374 deps: upgrade critical dependencies (#16358)
• 7d919b8 report: use container queries for responsive design in DevTools (#16342)
• c46d269 deps: upgrade csp_evaluator to 1.1.5 (#16347)
• 13207a1 deps: update to latest chrome-devtools-frontend (#16333)
• 29d065b core(cls-culprits-insight): implement (#16357)
• b8dcece report: render LH-only diagnostics alongside insights (#16332)
• 610cd5a misc(readme): add link to Neodymium (#16349)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.