Bump braces, vinyl-fs and karma

[dependabot[bot]]

Bumps braces to 2.3.2 and updates ancestor dependencies braces, vinyl-fs and karma. These dependencies need to be updated together.

Updates braces from 0.1.5 to 2.3.2

Changelog

Sourced from braces's changelog.

[2.3.2] - 2018-04-08

• start refactoring
• cover sets
• better range handling

[2.3.1] - 2018-02-17

• Remove unnecessary escape in Regex. (#14)

[2.3.0] - 2017-10-19

• minor code reorganization
• optimize regex
• expose maxLength option

[2.2.1] - 2017-05-30

• don't condense when braces contain extglobs

[2.2.0] - 2017-05-28

• ensure word boundaries are preserved
• fixes edge case where extglob characters precede a brace pattern

[2.1.1] - 2017-04-27

• use snapdragon-node
• handle edge case
• optimizations, lint

[2.0.4] - 2017-04-11

• pass opts to compiler
• minor optimization in create method
• re-write parser handlers to remove negation regex

[2.0.3] - 2016-12-10

• use split-string
• clear queue at the end
• adds sequences example
• add unit tests

[2.0.2] - 2016-10-21

• fix comma handling in nested extglobs

[2.0.1] - 2016-10-20

... (truncated)

Commits

• See full diff in compare view

Updates vinyl-fs from 2.4.4 to 3.0.3

Release notes

Sourced from vinyl-fs's releases.

v3.0.3

Fix

• Call the correct callback within symlink (13390dd) - Closes #298 #299

v3.0.2

Fix

• Avoid node internals for our WriteStream (167d8ff) - Closes #295

Build

• Add node 9 to CI matrices (62d1969)

v3.0.1

Fix

• Temporarily marshall old Vinyl objects to latest version in dest/symlink (bbfb50c)

Docs

• Update badges (2143060) - Closes #285
• Move changelog to https://github.com/gulpjs/vinyl-fs/releases (3b4ab64)

v3.0.0

Breaking

• Utilize vinyl-prepare & vinyl-sourcemap dependencies (af035a5) - Closes #193
• Consistent modules names (7fd3190)
• Improve symlink/junction behaviour (4b15227)
• Rename relative option to relativeSymlinks (09379ba) - Closes #251
• Rename stripBOM option to removeBOM (bfb56cd)
• Remove flag property leakage on Vinyl objects (de1eced)
• Handle overwrite option in symlink to be consistent with dest (08d33fb)
• Remove ability to pass options to through2 (5fcdf3a)
• Remove passthrough option & infer readable or passthrough (325a784)
• Replace flag option with append option (e739f6c)
• Default to using Junctions on Windows (40ac6e9) - Closes #210 #231
• Rename option followSymlinks to resolveSymlinks (20fc47c) - Closes #205
• Consistent directory layout (8dfe08b)
• Upgrade Vinyl to 2.0.0 (5dc079c)
• Added support for changing uid/gid on disk (7fc8509) - Closes #157 #188
• Remove base option from dest/symlink options, use functions for folder instead (7abaf4d) - Closes #141
• Remove superfluous argument from write-xxx modules & use file.path instead (501673b)
• Throw when dest()/symlink() is called with invalid folder argument & unskip tests (462fee5)

Fix

• Use explicit chmod to ensure setgid permission can be set & account for umask with default mode (8eb33dc) - Closes #183 #185
• Avoid file.isDirectory in useJunctions default (a741486) - Closes #247 #252

... (truncated)

Commits

• 7e22374 Release: 3.0.3
• 13390dd Fix: Call the correct callback within symlink (fixes #298) (#299)
• 0d6e6be Release: 3.0.2
• 62d1969 Build: Add node 9 to CI matrices
• 167d8ff Fix: Avoid node internals for our WriteStream (fixes #295)
• ff51196 Release: 3.0.1
• bbfb50c Fix: Temporarily marshall old Vinyl objects to latest version in dest/symlink...
• 3b4ab64 Docs: Move changelog to https://github.com/gulpjs/vinyl-fs/releases (ref #289)
• 2143060 Docs: Update badges (closes #285)
• 4e9a3ed Release: 3.0.0
• Additional commits viewable in compare view

Updates karma from 0.13.22 to 6.4.1

Release notes

Sourced from karma's releases.

v6.4.1

6.4.1 (2022-09-19)

Bug Fixes

• pass integrity value (63d86be)

v6.4.0

6.4.0 (2022-06-14)

Features

• support SRI verification of link tags (dc51a2e)
• support SRI verification of script tags (6a54b1c)

v6.3.20

6.3.20 (2022-05-13)

Bug Fixes

• prefer IPv4 addresses when resolving domains (e17698f), closes #3730

v6.3.19

6.3.19 (2022-04-19)

Bug Fixes

• client: error out when opening a new tab fails (099b85e)

v6.3.18

6.3.18 (2022-04-13)

Bug Fixes

• deps: upgrade socket.io to v4.4.1 (52a30bb)

v6.3.17

6.3.17 (2022-02-28)

Bug Fixes

• deps: update colors to maintained version (#3763) (fca1884)

v6.3.16

... (truncated)

Changelog

Sourced from karma's changelog.

6.4.1 (2022-09-19)

Bug Fixes

• pass integrity value (63d86be)

6.4.0 (2022-06-14)

Features

• support SRI verification of link tags (dc51a2e)
• support SRI verification of script tags (6a54b1c)

6.3.20 (2022-05-13)

Bug Fixes

• prefer IPv4 addresses when resolving domains (e17698f), closes #3730

6.3.19 (2022-04-19)

Bug Fixes

• client: error out when opening a new tab fails (099b85e)

6.3.18 (2022-04-13)

Bug Fixes

• deps: upgrade socket.io to v4.4.1 (52a30bb)

6.3.17 (2022-02-28)

Bug Fixes

• deps: update colors to maintained version (#3763) (fca1884)

6.3.16 (2022-02-10)

Bug Fixes

• security: mitigate the "Open Redirect Vulnerability" (ff7edbb)

... (truncated)

Commits

• 0013121 chore(release): 6.4.1 [skip ci]
• 63d86be fix: pass integrity value
• 84f7cc3 chore(release): 6.4.0 [skip ci]
• f2d0663 docs: add integrity parameter
• dc51a2e feat: support SRI verification of link tags
• 6a54b1c feat: support SRI verification of script tags
• 5e71cf5 chore(release): 6.3.20 [skip ci]
• e17698f fix: prefer IPv4 addresses when resolving domains
• 60f4f79 build: add Node 16 and 18 to the CI matrix
• 6ff5aaf chore(release): 6.3.19 [skip ci]
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/atheistengineer/atheistengineer.github.io/network/alerts).