Bump minimist, handlebars, karma, lite-server, protractor and tslint

[dependabot[bot]]

Bumps minimist to 1.2.8 and updates ancestor dependencies minimist, handlebars, karma, lite-server, protractor and tslint. These dependencies need to be updated together.

Updates minimist from 1.2.0 to 1.2.8

Changelog

Sourced from minimist's changelog.

v1.2.8 - 2023-02-09

Merged

• [Fix] Fix long option followed by single dash [#17](https://github.com/minimistjs/minimist/issues/17)
• [Tests] Remove duplicate test [#12](https://github.com/minimistjs/minimist/issues/12)
• [Fix] opt.string works with multiple aliases [#10](https://github.com/minimistjs/minimist/issues/10)

Fixed

• [Fix] Fix long option followed by single dash (#17) [#15](https://github.com/minimistjs/minimist/issues/15)
• [Tests] Remove duplicate test (#12) [#8](https://github.com/minimistjs/minimist/issues/8)
• [Fix] Fix long option followed by single dash [#15](https://github.com/minimistjs/minimist/issues/15)
• [Fix] opt.string works with multiple aliases (#10) [#9](https://github.com/minimistjs/minimist/issues/9)
• [Fix] Fix handling of short option with non-trivial equals [#5](https://github.com/minimistjs/minimist/issues/5)
• [Tests] Remove duplicate test [#8](https://github.com/minimistjs/minimist/issues/8)
• [Fix] opt.string works with multiple aliases [#9](https://github.com/minimistjs/minimist/issues/9)

Commits

• Merge tag 'v0.2.3' a026794
• [eslint] fix indentation and whitespace 5368ca4
• [eslint] fix indentation and whitespace e5f5067
• [eslint] more cleanup 62fde7d
• [eslint] more cleanup 36ac5d0
• [meta] add auto-changelog 73923d2
• [actions] add reusable workflows d80727d
• [eslint] add eslint; rules to enable later are warnings 48bc06a
• [eslint] fix indentation 34b0f1c
• [readme] rename and add badges 5df0fe4
• [Dev Deps] switch from covert to nyc a48b128
• [Dev Deps] update covert, tape; remove unnecessary tap f0fb958
• [meta] create FUNDING.yml; add funding in package.json 3639e0c
• [meta] use npmignore to autogenerate an npmignore file be2e038
• Only apps should have lockfiles 282b570
• isConstructorOrProto adapted from PR ef9153f
• [Dev Deps] update @ljharb/eslint-config, aud 098873c
• [Dev Deps] update @ljharb/eslint-config, aud 3124ed3
• [meta] add safe-publish-latest 4b927de
• [Tests] add aud in posttest b32d9bd
• [meta] update repo URLs f9fdfc0
• [actions] Avoid 0.6 tests due to build failures ba92fe6
• [Dev Deps] update tape 950eaa7
• [Dev Deps] add missing npmignore dev dep 3226afa
• Merge tag 'v0.2.2' 980d7ac

v1.2.7 - 2022-10-10

Commits

... (truncated)

Commits

• 6901ee2 v1.2.8
• a026794 Merge tag 'v0.2.3'
• c0b2661 v0.2.3
• 63b8fee [Fix] Fix long option followed by single dash (#17)
• 72239e6 [Tests] Remove duplicate test (#12)
• 34b0f1c [eslint] fix indentation
• 3226afa [Dev Deps] add missing npmignore dev dep
• 098873c [Dev Deps] update @ljharb/eslint-config, aud
• 9ec4d27 [Fix] Fix long option followed by single dash
• ba92fe6 [actions] Avoid 0.6 tests due to build failures
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by ljharb, a new releaser for minimist since your current version.

Updates handlebars from 4.0.10 to 4.0.11

Changelog

Sourced from handlebars's changelog.

v4.0.11 - October 17th, 2017

• #1391 - uglify-js is unconditionally imported, but only listed as optional dependency (@​Turbo87)
• #1233 - Unable to build under windows - error at test:bin task (@​blikblum)
• Update (C) year in the LICENSE file - 21386b6

Compatibility notes:

• This is a bugfix release. There are no breaking change and no new features.

Commits

Commits

• 1e954dd v4.0.11
• 1ac131e Update release notes
• 59548b4 Extend compiler-api example by replacing child-compiler
• 21386b6 Update (C) year in the LICENSE file
• 7930965 Gracefully handle missing uglify-js dependency
• 5b76f04 Fix build on Windows
• 1ed163f Update jsfiddle-link to 4.0.10
• See full diff in compare view

Updates karma from 1.7.1 to 6.4.1

Release notes

Sourced from karma's releases.

v6.4.1

6.4.1 (2022-09-19)

Bug Fixes

• pass integrity value (63d86be)

v6.4.0

6.4.0 (2022-06-14)

Features

• support SRI verification of link tags (dc51a2e)
• support SRI verification of script tags (6a54b1c)

v6.3.20

6.3.20 (2022-05-13)

Bug Fixes

• prefer IPv4 addresses when resolving domains (e17698f), closes #3730

v6.3.19

6.3.19 (2022-04-19)

Bug Fixes

• client: error out when opening a new tab fails (099b85e)

v6.3.18

6.3.18 (2022-04-13)

Bug Fixes

• deps: upgrade socket.io to v4.4.1 (52a30bb)

v6.3.17

6.3.17 (2022-02-28)

Bug Fixes

• deps: update colors to maintained version (#3763) (fca1884)

v6.3.16

... (truncated)

Changelog

Sourced from karma's changelog.

6.4.1 (2022-09-19)

Bug Fixes

• pass integrity value (63d86be)

6.4.0 (2022-06-14)

Features

• support SRI verification of link tags (dc51a2e)
• support SRI verification of script tags (6a54b1c)

6.3.20 (2022-05-13)

Bug Fixes

• prefer IPv4 addresses when resolving domains (e17698f), closes #3730

6.3.19 (2022-04-19)

Bug Fixes

• client: error out when opening a new tab fails (099b85e)

6.3.18 (2022-04-13)

Bug Fixes

• deps: upgrade socket.io to v4.4.1 (52a30bb)

6.3.17 (2022-02-28)

Bug Fixes

• deps: update colors to maintained version (#3763) (fca1884)

6.3.16 (2022-02-10)

Bug Fixes

• security: mitigate the "Open Redirect Vulnerability" (ff7edbb)

... (truncated)

Commits

• 0013121 chore(release): 6.4.1 [skip ci]
• 63d86be fix: pass integrity value
• 84f7cc3 chore(release): 6.4.0 [skip ci]
• f2d0663 docs: add integrity parameter
• dc51a2e feat: support SRI verification of link tags
• 6a54b1c feat: support SRI verification of script tags
• 5e71cf5 chore(release): 6.3.20 [skip ci]
• e17698f fix: prefer IPv4 addresses when resolving domains
• 60f4f79 build: add Node 16 and 18 to the CI matrix
• 6ff5aaf chore(release): 6.3.19 [skip ci]
• Additional commits viewable in compare view

Updates lite-server from 2.3.0 to 2.6.1

Changelog

Sourced from lite-server's changelog.

2.6.1

• Fixed npm audit's reported security vulnerabilities
• Fixed npm outdated packages
• Updated to 2.6.1
• Updated default branch to main
• update tests to use node 12 and 14

2.5.4

• Fixed npm audit's reported security vulnerabilities
  • audit fixes
  • ws
  • js yaml
  • [handlebars](https://github.com/johnpapa/lite-server/commit/b66952cf8911b41a30b0b9626eeb4db793bc813b
  • moment

2.5.3

• Fixed npm audit's reported security vulnerabilities
• Updated var to let and const
• Updated scripts for testing
• Added to Azure DevOps pipelines

Commits

• See full diff in compare view

Updates protractor from 5.1.2 to 5.4.4

Release notes

Sourced from protractor's releases.

5.4.3

typescript 3.7 compatibility

Resolves #5348 which was causing incompatibility with TypeScript 3.7

Changelog

Sourced from protractor's changelog.

5.4.4

Fixes

• fix: security prototype pollution

5.4.3

Fixes

fix(index.ts): Fix exports to unbreak TypeScript 3.7 build

5.4.2

Features

• (db1b638) feat(saucelabs): add sauceRegion support for eu datacenters (#5083)

  This change allows user to define the backend region from sauce via the sauceRegion property, e.g.

     sauceUser: process.env.SAUCE_USERNAME,
     sauceKey: process.env.SAUCE_ACCESS_KEY,
     sauceRegion: 'eu',
  

  Will run the test against https://ondemand.eu-central-1.saucelabs.com:443/wd/hub/.

     sauceUser: process.env.SAUCE_USERNAME,
     sauceKey: process.env.SAUCE_ACCESS_KEY,
     sauceRegion: 'us',
  // the default
  sauceUser: process.env.SAUCE_USERNAME,
  sauceKey: process.env.SAUCE_ACCESS_KEY,
  

  Will run the test against https://ondemand.saucelabs.com:443/wd/hub/

Fixes

• (f5dbe13) fix(deps): @​types/node is now a dev dependency

5.4.1

Features

• (7b08083)

... (truncated)

Commits

• a0ffa9b release: 5.4.4
• 8b3ebf8 fix: security prototype pollution
• 162f9e5 ci: Log sauce connect proxy to stdout, remove travis_wait, upgrade proxy to 4...
• eb1d0fc docs(release): Update release docs for 5.4 series.
• 6c46098 chore(release): Update changelog
• faf0895 fix(ci): Don't update webdriver in pretest
• d77731c fix(release): Pin CircleCI to Chrome v74
• efe7fdd chore(dependencies): Update natives, so we can continue to run Gulp on
• 0442e51 chore(release): Bugfix release 5.4.3
• 7999a08 fix(index.ts): Fix exports to unbreak TypeScript 3.7 build
• Additional commits viewable in compare view

Updates tslint from 5.3.2 to 5.20.1

Release notes

Sourced from tslint's releases.

v5.20.1

No changes from v5.20.0, just re-released to correctly mark with the latest dist-tag on NPM.

v5.20.0

• [bugfix] fix strict-boolean-expressions false positive with "ignore-rhs" option (#4833)
• [bugfix] fix no-unnecessary-type-assertion no error when "strict": true in compiler flags (#4841)
• [bugfix] "ignore" option for file-name-casing rule works correctly (#4848)
• [bugfix] fix array-type false positive for simple parenthesized types with "array-simple" option (#4844)
• [new-rule-option] object-literal-shorthand supports {"property"?: "never", "method"?: "never"} as config options (#4842)
• [new-rule-option]: allow-generics option for invalid-void rule (#4839)
• [new-rule-option] check-super-calls option for unnecessary-constructor rule (#4813)
• [chore] Upgrade diff dependency to v4.0.1 (#4845, #4852)

Thanks to our contributors!

• Bas Bosman
• Tanmoy Bhowmik
• David Zulaica
• Maxime Kjaer
• @​guidsdo
• Pavel Birukov
• Josh Goldberg
• Akshaya Srivatsa

v5.19.0

• [bugfix] relax promise-function-async for short parenthesized arrow functions (#4765)
• [bugfix] fix no-async-without-await false positive for abstract methods (#4782)
• [bugfix] fix strict-comparison false positive for null and undefined literals (#4786)
• [bugfix] improve no-angle-bracket-type-assertion autofix semantics with more parentheses (#4823)
• [enhancement] add BigInt support to restrict-plus-operands rule (#4814)
• [enhancement] await-promise now supports new TypeScript 3.6 AST API symbols for async iterators (#4800)
• [new-rule-option] check-strings and check-regex options for max-line-length rule (#4798)
• [new-rule-option] variable-declaration-ignore-function option for typedef rule (#4769)
• [new-rule-option] ignore-blank-lines option for object-literal-sort-keys rule (#4808)
• [new-rule] no-for-in (#4747)
• [new-rule] invalid-void (#4736)
• [new-rule] strict-string-expressions reports errors on type coercions found in string expressions (#4807)
• [new-rule] no-promise-as-boolean (#4790)
• [docs] link to OSS fellowship medium post in README (#4821)

Thanks to our contributors!

• Josh Pike
• Tanmoy Bhowmik
• Michael Withagen
• Evgeniy Timokhov
• Vitalij Krotov
• Josh Goldberg
• Veda

... (truncated)

Changelog

Sourced from tslint's changelog.

v5.20.1

No changes from v5.20.0, just re-released to correctly mark with the latest dist-tag on NPM.

v5.20.0

• [bugfix] fix strict-boolean-expressions false positive with "ignore-rhs" option (#4833)
• [bugfix] fix no-unnecessary-type-assertion no error when "strict": true in compiler flags (#4841)
• [bugfix] "ignore" option for file-name-casing rule works correctly (#4848)
• [bugfix] fix array-type false positive for simple parenthesized types with "array-simple" option (#4844)
• [new-rule-option]object-literal-shorthand supports {"property"?: "never", "method"?: "never"} as config options (#4842)
• [new-rule-option]: allow-generics option for invalid-void rule (#4839)
• [new-rule-option] check-super-calls option for unnecessary-constructor rule (#4813)
• [chore] Upgrade diff dependency to v4.0.1 (#4845, #4852)

Thanks to our contributors!

• Bas Bosman
• Tanmoy Bhowmik
• David Zulaica
• Maxime Kjaer
• @​guidsdo
• Pavel Birukov
• Josh Goldberg
• Akshaya Srivatsa

v5.19.0

• [bugfix] relax promise-function-async for short parenthesized arrow functions (#4765)
• [bugfix] fix no-async-without-await false positive for abstract methods (#4782)
• [bugfix] fix strict-comparisons false positive for null and undefined literals (#4786)
• [bugfix] improve no-angle-bracket-type-assertion autofix semantics with more parentheses (#4823)
• [enhancement] add BigInt support to restrict-plus-operands rule (#4814)
• [enhancement]await-promise now supports new TypeScript 3.6 AST API symbols for async iterators (#4800)
• [new-rule-option] check-strings and check-regex options for max-line-length rule (#4798)
• [new-rule-option] variable-declaration-ignore-function option for typedef rule (#4769)
• [new-rule-option] ignore-blank-lines option for object-literal-sort-keys rule (#4808)
• [new-rule]no-for-in (#4747)
• [new-rule]invalid-void (#4736)
• [new-rule]strict-string-expressions reports errors on type coercions found in string expressions (#4807)
• [new-rule]no-promise-as-boolean (#4790)
• [docs] link to OSS fellowship medium post in README (#4821)

Thanks to our contributors!

• Josh Pike
• Tanmoy Bhowmik
• Michael Withagen
• Evgeniy Timokhov
• Vitalij Krotov

... (truncated)

Commits

• 4e6d7a4 Prepare release v5.20.1
• 98edf1a Prepare release v5.20.0 (#4853)
• b6c8b0c [new-rule-option] check-super-calls option for unnecessary-constructor rule (...
• 7659cd9 chore: upgrade diff dependency to v4.0.1 (#4852)
• 38ef9d9 fix(file-name-casing): ignore option works correctly (#4848)
• a15541d Added allow-generics option to invalid-void rule (#4839)
• 0f2a540 Support granular config in 'object-literal-shorthand' (#4842)
• 44947c5 Fix bug where the strict ts flag wasn't recognised correctly by `no-unnecessa...
• 89d731f Fix parenthesized simple array types with array-simple (#4844) (#4846)
• abd83b5 chore: Upgrade diff dependency to v3.5.0 (#4845)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/RocketChat/Rocket.Chat.PWA/network/alerts).