Bump qs and express in /site

[dependabot[bot]]

Bumps qs, qs and express. These dependencies needed to be updated together. Updates qs from 6.5.2 to 6.9.7

Changelog

Sourced from qs's changelog.

6.9.7

• [Fix] parse: ignore __proto__ keys (#428)
• [Fix] stringify: avoid encoding arrayformat comma when encodeValuesOnly = true (#424)
• [Robustness] stringify: avoid relying on a global undefined (#427)
• [readme] remove travis badge; add github actions/codecov badges; update URLs
• [Docs] add note and links for coercing primitive values (#408)
• [Tests] clean up stringify tests slightly
• [meta] fix README.md (#399)
• Revert "[meta] ignore eclint transitive audit warning"
• [actions] backport actions from main
• [Dev Deps] backport updates from main

6.9.6

• [Fix] restore dist dir; mistakenly removed in d4f6c32

6.9.5

• [Fix] stringify: do not encode parens for RFC1738
• [Fix] stringify: fix arrayFormat comma with empty array/objects (#350)
• [Refactor] format: remove util.assign call
• [meta] add "Allow Edits" workflow; update rebase workflow
• [actions] switch Automatic Rebase workflow to pull_request_target event
• [Tests] stringify: add tests for #378
• [Tests] migrate tests to Github Actions
• [Tests] run nyc on all tests; use tape runner
• [Dev Deps] update eslint, @ljharb/eslint-config, browserify, mkdirp, object-inspect, tape; add aud

6.9.4

• [Fix] stringify: when arrayFormat is comma, respect serializeDate (#364)
• [Refactor] stringify: reduce branching (part of #350)
• [Refactor] move maybeMap to utils
• [Dev Deps] update browserify, tape

6.9.3

• [Fix] proper comma parsing of URL-encoded commas (#361)
• [Fix] parses comma delimited array while having percent-encoded comma treated as normal text (#336)

6.9.2

• [Fix] parse: Fix parsing array from object with comma true (#359)
• [Fix] parse: throw a TypeError instead of an Error for bad charset (#349)
• [meta] ignore eclint transitive audit warning
• [meta] fix indentation in package.json
• [meta] add tidelift marketing copy
• [Dev Deps] update eslint, @ljharb/eslint-config, object-inspect, has-symbols, tape, mkdirp, iconv-lite
• [actions] add automatic rebasing / merge commit blocking

6.9.1

• [Fix] parse: with comma true, handle field that holds an array of arrays (#335)
• [Fix] parse: with comma true, do not split non-string values (#334)
• [meta] add funding field
• [Dev Deps] update eslint, @ljharb/eslint-config

... (truncated)

Commits

• 4cd0032 v6.9.7
• e799ba5 [Fix] parse: ignore __proto__ keys (#428)
• 02ca358 [Robustness] stringify: avoid relying on a global undefined (#427)
• 4a17709 [Fix] stringify: avoid encoding arrayformat comma when `encodeValuesOnly = ...
• c0e13e9 [readme] remove travis badge; add github actions/codecov badges; update URLs
• 4113a5f [Tests] clean up stringify tests slightly
• 749a584 [Docs] add note and links for coercing primitive values (#408)
• cce2082 [meta] fix README.md (#399)
• c44f0c5 Revert "[meta] ignore eclint transitive audit warning"
• e6cfd8b [actions] backport actions from main
• Additional commits viewable in compare view

Updates qs from 6.9.6 to 6.9.7

Changelog

Sourced from qs's changelog.

6.9.7

• [Fix] parse: ignore __proto__ keys (#428)
• [Fix] stringify: avoid encoding arrayformat comma when encodeValuesOnly = true (#424)
• [Robustness] stringify: avoid relying on a global undefined (#427)
• [readme] remove travis badge; add github actions/codecov badges; update URLs
• [Docs] add note and links for coercing primitive values (#408)
• [Tests] clean up stringify tests slightly
• [meta] fix README.md (#399)
• Revert "[meta] ignore eclint transitive audit warning"
• [actions] backport actions from main
• [Dev Deps] backport updates from main

6.9.6

• [Fix] restore dist dir; mistakenly removed in d4f6c32

6.9.5

• [Fix] stringify: do not encode parens for RFC1738
• [Fix] stringify: fix arrayFormat comma with empty array/objects (#350)
• [Refactor] format: remove util.assign call
• [meta] add "Allow Edits" workflow; update rebase workflow
• [actions] switch Automatic Rebase workflow to pull_request_target event
• [Tests] stringify: add tests for #378
• [Tests] migrate tests to Github Actions
• [Tests] run nyc on all tests; use tape runner
• [Dev Deps] update eslint, @ljharb/eslint-config, browserify, mkdirp, object-inspect, tape; add aud

6.9.4

• [Fix] stringify: when arrayFormat is comma, respect serializeDate (#364)
• [Refactor] stringify: reduce branching (part of #350)
• [Refactor] move maybeMap to utils
• [Dev Deps] update browserify, tape

6.9.3

• [Fix] proper comma parsing of URL-encoded commas (#361)
• [Fix] parses comma delimited array while having percent-encoded comma treated as normal text (#336)

6.9.2

• [Fix] parse: Fix parsing array from object with comma true (#359)
• [Fix] parse: throw a TypeError instead of an Error for bad charset (#349)
• [meta] ignore eclint transitive audit warning
• [meta] fix indentation in package.json
• [meta] add tidelift marketing copy
• [Dev Deps] update eslint, @ljharb/eslint-config, object-inspect, has-symbols, tape, mkdirp, iconv-lite
• [actions] add automatic rebasing / merge commit blocking

6.9.1

• [Fix] parse: with comma true, handle field that holds an array of arrays (#335)
• [Fix] parse: with comma true, do not split non-string values (#334)
• [meta] add funding field
• [Dev Deps] update eslint, @ljharb/eslint-config

... (truncated)

Commits

• 4cd0032 v6.9.7
• e799ba5 [Fix] parse: ignore __proto__ keys (#428)
• 02ca358 [Robustness] stringify: avoid relying on a global undefined (#427)
• 4a17709 [Fix] stringify: avoid encoding arrayformat comma when `encodeValuesOnly = ...
• c0e13e9 [readme] remove travis badge; add github actions/codecov badges; update URLs
• 4113a5f [Tests] clean up stringify tests slightly
• 749a584 [Docs] add note and links for coercing primitive values (#408)
• cce2082 [meta] fix README.md (#399)
• c44f0c5 Revert "[meta] ignore eclint transitive audit warning"
• e6cfd8b [actions] backport actions from main
• Additional commits viewable in compare view

Updates express from 4.17.2 to 4.17.3

Release notes

Sourced from express's releases.

4.17.3

• deps: accepts@~1.3.8
  • deps: mime-types@~2.1.34
  • deps: negotiator@0.6.3
• deps: body-parser@1.19.2
  • deps: bytes@3.1.2
  • deps: qs@6.9.7
  • deps: raw-body@2.4.3
• deps: cookie@0.4.2
• deps: qs@6.9.7
  • Fix handling of __proto__ keys
• pref: remove unnecessary regexp for trust proxy

Changelog

Sourced from express's changelog.

4.17.3 / 2022-02-16

• deps: accepts@~1.3.8
  • deps: mime-types@~2.1.34
  • deps: negotiator@0.6.3
• deps: body-parser@1.19.2
  • deps: bytes@3.1.2
  • deps: qs@6.9.7
  • deps: raw-body@2.4.3
• deps: cookie@0.4.2
• deps: qs@6.9.7
  • Fix handling of __proto__ keys
• pref: remove unnecessary regexp for trust proxy

Commits

• 3d7fce5 4.17.3
• f906371 build: update example dependencies
• 6381bc6 deps: qs@6.9.7
• a007863 deps: body-parser@1.19.2
• e98f584 Revert "build: use minimatch@3.0.4 for Node.js < 4"
• a659137 tests: use strict mode
• a39e409 tests: prevent leaking changes to NODE_ENV
• 82de4de examples: fix path traversal in downloads example
• 12310c5 build: use nyc for test coverage
• 884657d examples: remove bitwise syntax for includes check
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/blocher/dailyoffice2019/network/alerts).

[dependabot[bot]]

OK, I won't notify you again about this release, but will get in touch when a new version is available.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.