Bump minimist, extract-zip and karma

Bumps minimist to 1.2.6 and updates ancestor dependencies minimist, extract-zip and karma. These dependencies need to be updated together.

Updates minimist from 0.2.0 to 1.2.6

Changelog

Sourced from minimist's changelog.

v1.2.6 - 2022-03-21

Commits

test from prototype pollution PR bc8ecee

isConstructorOrProto adapted from PR c2b9819

security notice for additional prototype pollution issue ef88b93

v1.2.5 - 2020-03-12

v1.2.4 - 2020-03-11

Commits

security notice 4cf1354

additional test for constructor prototype pollution 1043d21

v1.2.3 - 2020-03-10

Commits

more failing proto pollution tests 13c01a5

even more aggressive checks for protocol pollution 38a4d1c

v1.2.2 - 2020-03-10

Commits

failing test for protocol pollution 0efed03

cleanup 67d3722

console.dir -> console.log 47acf72

don't assign onto proto 63e7ed0

v1.2.1 - 2020-03-10

Merged

move the opts['--'] example back where it belongs [#63](https://github.com/minimistjs/minimist/issues/63)

Commits

add test 6be5dae

fix bad boolean regexp ac3fc79

v1.2.0 - 2015-08-24

Commits

failing -k=v short test 63416b8

kv short fix 6bbe145

... (truncated)

Commits

7efb22a 1.2.6
ef88b93 security notice for additional prototype pollution issue
c2b9819 isConstructorOrProto adapted from PR
bc8ecee test from prototype pollution PR
aeb3e27 1.2.5
278677b 1.2.4
4cf1354 security notice
1043d21 additional test for constructor prototype pollution
6457d74 1.2.3
38a4d1c even more aggressive checks for protocol pollution
Additional commits viewable in compare view

Updates extract-zip from 1.6.7 to 1.7.0

Release notes

Sourced from extract-zip's releases.

1.7.0

Added

Error handler for zipfile object (#67)

Changed

Don't pin dependency requirements to specific versions (#88)

1.6.8

Dependencies

Update mkdirp to 0.5.4.

Commits

c2b1c17 1.7.0
990fc64 Add error handler to zipfile object (#67)
8285111 feat: don't pin dependency requirements (#88)
2a8df24 1.6.8
30ab06c build(deps): upgrade mkdirp to 0.5.4 for security
2b2a84e build: ignore lock files
See full diff in compare view

Updates karma from 3.1.4 to 6.4.1

Release notes

Sourced from karma's releases.

v6.4.1

6.4.1 (2022-09-19)

Bug Fixes

pass integrity value (63d86be)

v6.4.0

6.4.0 (2022-06-14)

Features

support SRI verification of link tags (dc51a2e)

support SRI verification of script tags (6a54b1c)

v6.3.20

6.3.20 (2022-05-13)

Bug Fixes

prefer IPv4 addresses when resolving domains (e17698f), closes #3730

v6.3.19

6.3.19 (2022-04-19)

Bug Fixes

client: error out when opening a new tab fails (099b85e)

v6.3.18

6.3.18 (2022-04-13)

Bug Fixes

deps: upgrade socket.io to v4.4.1 (52a30bb)

v6.3.17

6.3.17 (2022-02-28)

Bug Fixes

deps: update colors to maintained version (#3763) (fca1884)

v6.3.16

... (truncated)

Changelog

Sourced from karma's changelog.

6.4.1 (2022-09-19)

Bug Fixes

pass integrity value (63d86be)

6.4.0 (2022-06-14)

Features

support SRI verification of link tags (dc51a2e)

support SRI verification of script tags (6a54b1c)

6.3.20 (2022-05-13)

Bug Fixes

prefer IPv4 addresses when resolving domains (e17698f), closes #3730

6.3.19 (2022-04-19)

Bug Fixes

client: error out when opening a new tab fails (099b85e)

6.3.18 (2022-04-13)

Bug Fixes

deps: upgrade socket.io to v4.4.1 (52a30bb)

6.3.17 (2022-02-28)

Bug Fixes

deps: update colors to maintained version (#3763) (fca1884)

6.3.16 (2022-02-10)

Bug Fixes

security: mitigate the "Open Redirect Vulnerability" (ff7edbb)

... (truncated)

Commits

0013121 chore(release): 6.4.1 [skip ci]
63d86be fix: pass integrity value
84f7cc3 chore(release): 6.4.0 [skip ci]
f2d0663 docs: add integrity parameter
dc51a2e feat: support SRI verification of link tags
6a54b1c feat: support SRI verification of script tags
5e71cf5 chore(release): 6.3.20 [skip ci]
e17698f fix: prefer IPv4 addresses when resolving domains
60f4f79 build: add Node 16 and 18 to the CI matrix
6ff5aaf chore(release): 6.3.19 [skip ci]
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/BurkusCat/r6-operator-counters/network/alerts).

BurkusCat / r6-operator-counters