Bump vm2 from 3.9.2 to 3.9.4

[dependabot[bot]]

Bumps vm2 from 3.9.2 to 3.9.4.

Release notes

Sourced from vm2's releases.

3.9.4

New Features

4ead241540bb3d6ffcca64ce98d3b263c8f15cb4: Added strict option

Fixes

b4f6e2bd2c4a1ef52fc4483d8e35f28bc4481886: Fix breakouts in VM. e95165b36fd07d20febd00a7b08fc8292ccc703e: Fix for bound function causes TypeError 42c7b83ce8dded5e3ae03142736dcf8306a2c2a8: Allow extending of frozen objects

3.9.3

Fixes

• ff894fcbd43298614bd28bc173d3446961a86913: Fix breakouts in VM.
• d12bdbdb647ba14d7b788ea6b2089df9c09028df: Fix problems when Promise object is deleted.
• 77a7681d29ca826400e9bb25b653e4112b270639: Fix oversight that write ability can change on non configurable properties.
• 8a76a08e22a76a2e5becf53f5df1306327658721: Support shebang as node does.
• 3f05f9807e0c022df75597e31f191fc5facf8a3c: Fix property typos.

Changelog

Sourced from vm2's changelog.

v3.9.4 (2021-10-12)

[new] Added strict option
[fix] Security fixes (XmiliaH)
[fix] Fixed bound function causes TypeError (XmiliaH)
[fix] Allow extending of frozen objects

v3.9.3 (2020-04-07)

[fix] Security fixes
[fix] Fixed problems when Promise object is deleted (XmiliaH)
[fix] Fixed oversight that write ability can change on non configurable properties (XmiliaH)
[fix] Support shebang as node does (XmiliaH)
[fix] Property typos (Shigma)

Commits

• 1eabc2a Update Version
• 6820f56 Merge pull request #367 from XmiliaH/security-fix
• b4f6e2b Security Fixes
• 82caa5b Merge pull request #346 from XmiliaH/fix-330
• 12e721b Fix formatting
• 4ead241 Merge pull request #313 from XmiliaH/fix-strict-modules
• 6fee336 Merge pull request #319 from XmiliaH/fix-318
• cc63160 Merge pull request #347 from XmiliaH/updates
• 72152d2 Update readme
• 807e2b2 Bring files up to date
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/ecc521/rivers.run/network/alerts).

[dependabot[bot]]

Looks like vm2 is up-to-date now, so this is no longer needed.