build: Bump minimist, mocha and nyc

[dependabot[bot]]

Bumps minimist, mocha and nyc. These dependencies needed to be updated together. Updates minimist from 1.2.5 to 1.2.6

Commits

• 7efb22a 1.2.6
• ef88b93 security notice for additional prototype pollution issue
• c2b9819 isConstructorOrProto adapted from PR
• bc8ecee test from prototype pollution PR
• See full diff in compare view

Updates mocha from 5.2.0 to 10.0.0

Release notes

Sourced from mocha's releases.

v10.0.0

10.0.0 / 2022-05-01

:boom: Breaking Changes

• #4845: Drop Node.js v12.x support (@​juergba)

• #4848: Drop Internet-Explorer-11 support (@​juergba)

• #4857: Drop AMD/RequireJS support (@​juergba)

• #4866: Drop Growl notification support (@​juergba)

• #4863: Rename executable bin/mocha to bin/mocha.js (@​juergba)

• #4865: --ignore option in Windows: upgrade Minimatch (@​juergba)

• #4861: Remove deprecated Runner signature (@​juergba)

:nut_and_bolt: Other

• #4878: Update production dependencies (@​juergba)

• #4876: Add Node.js v18 to CI test matrix (@​outsideris)

• #4852: Replace deprecated String.prototype.substr() (@​CommanderRoot)

Also thanks to @​ea2305 and @​SukkaW for improvements to our documentation.

v9.2.2

9.2.2 / 2022-03-11

Please also note our announcements.

:bug: Fixes

• #4842: Loading of reporter throws wrong error (@​juergba)

• #4839: dry-run: prevent potential call-stack crash (@​juergba)

:nut_and_bolt: Other

• #4843: Update production dependencies (@​juergba)

v9.2.1

9.2.1 / 2022-02-19

Please also note our announcements.

:bug: Fixes

... (truncated)

Changelog

Sourced from mocha's changelog.

10.0.0 / 2022-05-01

:boom: Breaking Changes

• #4845: Drop Node.js v12.x support (@​juergba)

• #4848: Drop Internet-Explorer-11 support (@​juergba)

• #4857: Drop AMD/RequireJS support (@​juergba)

• #4866: Drop Growl notification support (@​juergba)

• #4863: Rename executable bin/mocha to bin/mocha.js (@​juergba)

• #4865: --ignore option in Windows: upgrade Minimatch (@​juergba)

• #4861: Remove deprecated Runner signature (@​juergba)

:nut_and_bolt: Other

• #4878: Update production dependencies (@​juergba)

• #4876: Add Node.js v18 to CI test matrix (@​outsideris)

• #4852: Replace deprecated String.prototype.substr() (@​CommanderRoot)

Also thanks to @​ea2305 and @​SukkaW for improvements to our documentation.

9.2.2 / 2022-03-11

:bug: Fixes

• #4842: Loading of reporter throws wrong error (@​juergba)

• #4839: dry-run: prevent potential call-stack crash (@​juergba)

:nut_and_bolt: Other

• #4843: Update production dependencies (@​juergba)

9.2.1 / 2022-02-19

:bug: Fixes

• #4832: Loading of config files throws wrong error (@​juergba)

• #4799: Reporter: configurable maxDiffSize reporter-option (@​norla)

9.2.0 / 2022-01-24

... (truncated)

Commits

• 023f548 build(v10.0.0): release
• 62b1566 build(v10.0.0): update CHANGELOG
• fbe7a24 chore: update dependencies (#4878)
• 2b98521 docs: replace 'git.io' short links (#4877) [ci skip]
• 007fa65 chore(ci): add Node v18 to test matrix (#4876)
• f6695f0 chore(esm): remove code for Node v12 (#4874)
• 59f6192 chore(ci): conditionally skip 'push' event (#4872)
• b863359 docs: fix 'fgrep' url (#4873)
• baaa41a chore(ci): ignore changes to docs files (#4871)
• ac81cc5 refactor!: drop support of 'growl' notification (#4866)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by juergba, a new releaser for mocha since your current version.

Updates nyc from 12.0.2 to 15.1.0

Changelog

Sourced from nyc's changelog.

15.1.0 (2020-06-01)

Features

• experimental: Support using --all with node.js ESM (#1320) (992359a)

15.0.1 (2020-04-02)

Bug Fixes

• Data merge concurrency limit to prevent OOM (#1293) (df34c1c), closes #1263
• Ignore insignificant lines when coalesce text report (#1300) (3a577f0), closes istanbuljs/istanbuljs#525

15.0.0 (2019-12-20)

⚠ BREAKING CHANGES

• The flow and jsx parser plugins are no longer enabled by default.
• Node.js 8 is now required to run nyc
• Remove NYC_ROOT_ID and NYC_INSTRUMENTER environmental variables.
• The root field has been removed from processinfo files.

Features

• Add --use-spawn-wrap=true option (#1169) (df4de4d)
• Add .cjs, .mjs, .ts, .tsx, .jsx to default extensions (#1110) (914b776), closes #1103
• Allow nyc instrument to instrument code in place (#1149) (7783284)
• Drop node.js 6, upgrade dependencies (#1134) (00c3b34)
• Filenames relative to project cwd in coverage reports (#1212) (5258e9f)
• Use @​istanbuljs/schema for yargs setup (#1194) (fd40d49)
• Use istanbul-lib-processinfo (#1145) (7943413)
• Use source base name to prefix cache files (#1144) (5c1b7a9)

Bug Fixes

• Avoid source-map module during signal-exit handler (#1191) (83eb629)
• Better error handling for main execution, reporting (#1229) (dfd629d)
• Correct handling of source-maps for pre-instrumented files (#1216) (8411a26), closes #1208
• Drop coverage produced by nyc --all for files that were tested (#1155) (fc1bbbf), closes #1113 #1124 #1148
• Honor eager setting (false by default) (#1179) (c18fb0a)
• Remove vestigial environment variables (#1078) (cfd3da0)

14.1.1 (2019-05-09)

... (truncated)

Commits

• de7baa4 chore(release): 15.1.0
• 992359a feat(experimental): Support using --all with node.js ESM (#1320)
• 086fd20 chore: Regenerate package-lock, update source-map-support test (#1314)
• b20f751 chore: add bugs (used, e.g., by npmjs) (#1313)
• 6898e88 chore: Fix CHANGELOG.md version header
• d9a76d5 chore(release): 15.0.1
• 3a577f0 fix: Ignore insignificant lines when coalesce text report (#1300)
• df34c1c fix: Data merge concurrency limit to prevent OOM (#1293)
• befbf08 chore: A test where nyc output help text to stderr was flaky (#1269)
• 9260a70 docs: Remove nyc containing object in json config examples (#1276)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by coreyfarrell, a new releaser for nyc since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/box/boxcli/network/alerts).

[dependabot[bot]]

Looks like these dependencies are updatable in another way, so this is no longer needed.