Bump d3-color and d3

[dependabot[bot]]

Bumps d3-color to 3.1.0 and updates ancestor dependency d3. These dependencies need to be updated together.

Updates d3-color from 1.4.1 to 3.1.0

Release notes

Sourced from d3-color's releases.

v3.1.0

• Add rgb.clamp and hsl.clamp. #102
• Add color.formatHex8. #103
• Fix color.formatHsl to clamp values to the expected range. #83
• Fix catastrophic backtracking when parsing colors. #89 #97 #99 #100 SNYK-JS-D3COLOR-1076592

v3.0.1

• Make build reproducible.

v3.0.0

• Adopt type: module.

This package now requires Node.js 12 or higher. For more, please read Sindre Sorhus’s FAQ.

v2.0.0

This release adopts ES2015 language features such as for-of and drops support for older browsers, including IE. If you need to support pre-ES2015 environments, you should stick with d3-color 1.x or use a transpiler.

Commits

• 7a1573e 3.1.0
• 75c19c4 update LICENSE
• ef94e01 update dependencies
• 5e9f757 method shorthand
• e4bc34e formatHex8 (#103)
• ac660c6 {rgb,hsl}.clamp() (#102)
• 70e3a04 clamp HSL format (#101)
• 994d8fd avoid backtracking (#100)
• 7d61bbe 3.0.1
• 93bc4ff related d3/d33; extract copyrights from LICENSE
• Additional commits viewable in compare view

Updates d3 from 5.16.0 to 7.8.4

Release notes

Sourced from d3's releases.

v7.8.4

• Fix circumcenters when the hull is collinear. d3/d3-delaunay#142

v7.8.3

• Fix precision error calculating voronoi.neighbors. d3/d3-delaunay#138 d3/d3-delaunay#139
• Fix broken polygon. d3/d3-delaunay#140
• Fix threshold generation when input is empty or has no deviation. d3/d3-array#271

v7.8.2

• d3.ticks now tries harder to generate at least one tick. d3/d3-array#264

v7.8.1

• Tolerate invalid input values when generating contours. #61
• Tolerate invalid input weights when generating density contours. #65
• Fix missing contours at extrema when using default thresholds. #68

v7.8.0

• Add d3.pathRound.
• Add configurable precision when generating path data via path.digits.
• Add likewise shape.digits method to d3.arc, d3.area, d3.line, d3.link, and d3.symbol.
• Improve the performance of d3.geoPath’s string concatenation.
• Fix arc rendering for small arcs with rounded corners.
• Fix BumpRadial implementation to support multiple points.
• Fix projection when lambda is outside the range ±3π.
• Rename d3.symbolX to d3.symbolTimes; d3.symbolX is now deprecated.

v7.7.0

• Add d3.unixDay and d3.unixDays. d3/d3-time#58
• Adopt d3.unixDay in place of d3.utcDay for d3.utcTicks to ensure uniform tick spacing.
• Fix mutation of user-owned thresholds in d3.bin. d3/d3-array#263
• Fix infinite loop when d3.quantile or d3.quickselect is called with invalid arguments. d3/d3-array#262

v7.6.1

• density.bandwidth now supports fractional (non-integer) values.

v7.6.0

• Add d3.blur.
• Add d3.blur2.
• Add d3.blurImage.
• Add d3.medianIndex.
• Add d3.quantileIndex.

v7.5.0

• Add density.contours.

v7.4.5

• Fix the interpretation of an array of numbers passed to density.thresholds.

v7.4.4

• Fix incorrect behavior of d3.bisector when given an asymmetric comparator.

... (truncated)

Commits

• 37b1960 7.8.4
• 9160c16 d3-delaunay 6.0.4
• a703a6d 7.8.3
• 604483b d3-array 3.2.3, d3-delaunay 6.0.3
• 0713d54 7.8.2
• 06e5d41 d3-array 3.2.2
• f7ad8e3 7.8.1
• 8d2a956 d3-contour 4.0.2
• 73ed925 7.8.0
• a8a664c drop rollup-plugin-ascii
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/VulnerabilityHistoryProject/vulnerability-history/network/alerts).

[dependabot[bot]]

OK, I won't notify you again about this release, but will get in touch when a new version is available.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.