Bump qs from 6.5.2 to 6.9.2

[dependabot-preview[bot]]

Bumps qs from 6.5.2 to 6.9.2.

Changelog

Sourced from qs's changelog.

6.9.2

• [Fix] parse: Fix parsing array from object with comma true (#359)
• [Fix] parse: throw a TypeError instead of an Error for bad charset (#349)
• [meta] ignore eclint transitive audit warning
• [meta] fix indentation in package.json
• [meta] add tidelift marketing copy
• [Dev Deps] update eslint, @ljharb/eslint-config, object-inspect, has-symbols, tape, mkdirp, iconv-lite
• [actions] add automatic rebasing / merge commit blocking

6.9.1

• [Fix] parse: with comma true, handle field that holds an array of arrays (#335)
• [Fix] parse: with comma true, do not split non-string values (#334)
• [meta] add funding field
• [Dev Deps] update eslint, @ljharb/eslint-config
• [Tests] use shared travis-ci config

6.9.0

• [New] parse/stringify: Pass extra key/value argument to decoder (#333)
• [Dev Deps] update eslint, @ljharb/eslint-config, evalmd
• [Tests] parse: add passing arrayFormat tests
• [Tests] add posttest using npx aud to run npm audit without a lockfile
• [Tests] up to node v12.10, v11.15, v10.16, v8.16
• [Tests] Buffer.from in node v5.0-v5.9 and v4.0-v4.4 requires a TypedArray

6.8.0

• [New] add depth=false to preserve the original key; [Fix] depth=0 should preserve the original key (#326)
• [New] [Fix] stringify symbols and bigints
• [Fix] ensure node 0.12 can stringify Symbols
• [Fix] fix for an impossible situation: when the formatter is called with a non-string value
• [Refactor] formats: tiny bit of cleanup.
• [Dev Deps] update eslint, @ljharb/eslint-config, browserify, safe-publish-latest, iconv-lite, tape
• [Tests] add tests for depth=0 and depth=false behavior, both current and intuitive/intended (#326)
• [Tests] use eclint instead of editorconfig-tools
• [docs] readme: add security note
• [meta] add github sponsorship
• [meta] add FUNDING.yml
• [meta] Clean up license text so it’s properly detected as BSD-3-Clause

6.7.0

• [New] stringify/parse: add comma as an arrayFormat option (#276, #219)
• [Fix] correctly parse nested arrays (#212)
• [Fix] utils.merge: avoid a crash with a null target and a truthy non-array source, also with an array source
• [Robustness] stringify: cache Object.prototype.hasOwnProperty
• [Refactor] utils: isBuffer: small tweak; add tests
• [Refactor] use cached Array.isArray
• [Refactor] parse/stringify: make a function to normalize the options
• [Refactor] utils: reduce observable [[Get]]s
• [Refactor] stringify/utils: cache Array.isArray
• [Tests] always use String(x) over x.toString()
• [Tests] fix Buffer tests to work in node < 4.5 and node < 5.10

... (truncated)

Commits

• ddc1ff9 v6.9.2
• 911efab [Dev Deps] update tape, mkdirp, iconv-lite
• eecd28d [Fix] parse: Fix parsing array from object with comma true
• 0625c49 [Dev Deps] update @ljharb/eslint-config, tape
• fe6384c [Fix] parse: throw a TypeError instead of an Error for bad charset
• eac5616 [Dev Deps] update eslint, @ljharb/eslint-config, object-inspect, `has-s...
• 5af2bf8 [meta] ignore eclint transitive audit warning
• 72dc89f [meta] fix indentation in package.json
• 76e4570 [actions] add automatic rebasing / merge commit blocking
• 152b26c [meta] add tidelift marketing copy
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will not automatically merge this PR because it includes a minor update to a production dependency.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Automerge options (never/patch/minor, and dev/runtime dependencies) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired)

[dependabot-preview[bot]]

Superseded by #644.