Bump minimist and coveralls

[dependabot[bot]]

Bumps minimist to 1.2.7 and updates ancestor dependency coveralls. These dependencies need to be updated together.

Updates minimist from 0.2.2 to 1.2.7

Changelog

Sourced from minimist's changelog.

v1.2.7 - 2022-10-10

Commits

• [meta] add auto-changelog 0ebf4eb
• [actions] add reusable workflows e115b63
• [eslint] add eslint; rules to enable later are warnings f58745b
• [Dev Deps] switch from covert to nyc ab03356
• [readme] rename and add badges 236f4a0
• [meta] create FUNDING.yml; add funding in package.json 783a49b
• [meta] use npmignore to autogenerate an npmignore file f81ece6
• Only apps should have lockfiles 56cad44
• [Dev Deps] update covert, tape; remove unnecessary tap 49c5f9f
• [Tests] add aud in posttest 228ae93
• [meta] add safe-publish-latest 01fc23f
• [meta] update repo URLs 6b164c7

v1.2.6 - 2022-03-21

Commits

• test from prototype pollution PR bc8ecee
• isConstructorOrProto adapted from PR c2b9819
• security notice for additional prototype pollution issue ef88b93

v1.2.5 - 2020-03-12

v1.2.4 - 2020-03-11

Commits

• security notice 4cf1354
• additional test for constructor prototype pollution 1043d21

v1.2.3 - 2020-03-10

Commits

• more failing proto pollution tests 13c01a5
• even more aggressive checks for protocol pollution 38a4d1c

v1.2.2 - 2020-03-10

Commits

• failing test for protocol pollution 0efed03
• cleanup 67d3722
• console.dir -> console.log 47acf72
• don't assign onto proto 63e7ed0

... (truncated)

Commits

• c590d75 v1.2.7
• 0ebf4eb [meta] add auto-changelog
• e115b63 [actions] add reusable workflows
• 01fc23f [meta] add safe-publish-latest
• f58745b [eslint] add eslint; rules to enable later are warnings
• 228ae93 [Tests] add aud in posttest
• 236f4a0 [readme] rename and add badges
• ab03356 [Dev Deps] switch from covert to nyc
• 49c5f9f [Dev Deps] update covert, tape; remove unnecessary tap
• 783a49b [meta] create FUNDING.yml; add funding in package.json
• Additional commits viewable in compare view

Updates coveralls from 2.13.3 to 3.1.1

Release notes

Sourced from coveralls's releases.

Maintenance / Security updates

• swapped exec for execFile. Credit: Adar Zandberg from the CxSCA AppSec team at Checkmarx.
• updated devDependencies
• merged Dependabot PRs

Improved CircleCI / Travis parallelism support

• Handle service_job_number for parallelism in Travis and CircleCI (#290) 705c3b5
• Update sinon to v7.5.0. (#288) eb6dc35

https://github.com/nickmerwin/node-coveralls/compare/v3.0.14...v3.1.0

---

This is a minor release due to the change in behavior for CircleCI, which now uses the Workflow ID to merge parallel coverage jobs:

    options.service_number = process.env.CIRCLE_WORKFLOW_ID;
    options.service_job_number = process.env.CIRCLE_BUILD_NUM;

Maintenance

• Update safe dependencies and fix npm vulnerabilities (#284) 59a57e2
• Move fixtures to test/fixtures. (#286) a0c6941 @​XhmikosR
• GH Action workflow update (#287) 1615297
• Minor lint tweaks (#285) 3647673 @​XhmikosR
• remove redundant code (#283) ff21930 @​lpinca

Maintenance release

No release notes provided.

COVERALLS_SERVICE_NUMBER environment variable support

Improved:

• If COVERALLS_SERVICE_NUMBER is set, set service_number from it. (@​midgleyc)

CodeFresh support, Maintenance

Added:

• CodeFresh support (@​suda)

Improved:

• Travis Pro repo token handling (@​benpetty @​derekherman)
• Readme Jest example re: posting on success only (@​AndreMiras)

Updated:

• minimist version (@​ashishkujoy)
• GitHub CI actions checkout v2 (@​XhmikosR)

... (truncated)

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/baltimorecounty/BCPL-assets/network/alerts).