Bump node-jose from 2.0.0 to 2.2.0

[dependabot[bot]]

Bumps node-jose from 2.0.0 to 2.2.0.

Changelog

Sourced from node-jose's changelog.

Release Notes

2.0.1 (2021-11-15)

The changes in this release are only dependency updates.

Update

• update dependencies using minor releases for buffer, and lodash
• updated devDependencies using minor releases for bowser, browserify-istanbul, chai, gulp-eslint, gulp-istanbul, gulp-rename, json-loader, karma, karma-chrome-launcher, karma-coverage, karma-firefox-launcher, karma-mocha-reporter, karma-safari-applescript-launcher, karma-sauce-launcher, karma-sourcemap-loader, mocha, run-sequence, webpack-stream, and yargs
• updated devDependencies use major release for webpack, and karma-webpack

Commits

• 4d78fe8 2.2.0
• 992c1cb build(deps-dev): bump mocha from 10.1.0 to 10.2.0 (#411)
• 901d915 Merge pull request from GHSA-5h4j-qrvg-9xhw
• e95481a Merge pull request #398 from batrudinych/alg-doc-fix
• a27dd90 Fix tests (#409)
• 61655ad Dependency updates (2/n) (#408)
• 2f9d052 .github: Add CodeQL workflow (#407)
• 9a2d404 build(deps): bump uuid from 8.3.2 to 9.0.0 (#392)
• 6649d96 build(deps-dev): bump karma from 6.4.0 to 6.4.1 (#393)
• 88b5e6d build(deps): bump long from 5.2.0 to 5.2.1 (#401)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by justaugustus, a new releaser for node-jose since your current version.

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/clinical-meteor/node-on-fhir/network/alerts).

Note Automatic rebases have been disabled on this pull request as it has been open for over 30 days.