Bump braces and budo

[dependabot[bot]]

Bumps braces to 3.0.3 and updates ancestor dependency budo. These dependencies need to be updated together.

Updates braces from 1.8.5 to 3.0.3

Changelog

Sourced from braces's changelog.

Release history

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog and this project adheres to Semantic Versioning.

• Changelogs are for humans, not machines.
• There should be an entry for every single version.
• The same types of changes should be grouped.
• Versions and sections should be linkable.
• The latest version comes first.
• The release date of each versions is displayed.
• Mention whether you follow Semantic Versioning.

Changelog entries are classified using the following labels (from keep-a-changelog):

• Added for new features.
• Changed for changes in existing functionality.
• Deprecated for soon-to-be removed features.
• Removed for now removed features.
• Fixed for any bug fixes.
• Security in case of vulnerabilities.

[3.0.0] - 2018-04-08

v3.0 is a complete refactor, resulting in a faster, smaller codebase, with fewer deps, and a more accurate parser and compiler.

Breaking Changes

• The undocumented .makeRe method was removed

Non-breaking changes

• Caching was removed

[2.3.2] - 2018-04-08

• start refactoring
• cover sets

... (truncated)

Commits

• 74b2db2 3.0.3
• 88f1429 update eslint. lint, fix unit tests.
• 415d660 Snyk js braces 6838727 (#40)
• 190510f fix tests, skip 1 test in test/braces.expand
• 716eb9f readme bump
• a5851e5 Merge pull request #37 from coderaiser/fix/vulnerability
• 2092bd1 feature: braces: add maxSymbols (https://github.com/micromatch/braces/issues/...
• 9f5b4cf fix: vulnerability (https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727)
• 98414f9 remove funding file
• 665ab5d update keepEscaping doc (#27)
• Additional commits viewable in compare view

Updates budo from 10.0.4 to 11.8.4

Changelog

Sourced from budo's changelog.

11.x

Breaking Changes

• Upgraded to browserify@15, set supported node version to >= 4

10.x

:tada:

Breaking Changes

• Upgraded to browserify@14
• The --pushstate boolean argument should now come after entries in the CLI, as it supports subarg options. Using it before entries will still work but may log a warning.
• Major overhaul to LiveReload backend to make it faster and more robust #194
  • No longer uses tiny-lr or the old school LiveReload stuff, so it no longer supports some of the feature set from that tool
  • No longer supports the LiveReload browser plugin
  • Budo runs everything on a single port/server instead of a second server for LiveReload
  • /budo/livereload.js now serves the LiveReload client

Other Changes

• opts.staticOptions is now passed onto serve-static module
• opts.pushstate (boolean or object) is now passed onto connect-pushstate module
• CLI now supports subarg syntax for commands like --static-options and --pushstate
• defaultIndex function now accepts a req as the second parameter

9.4.7

• Make HTTP logging more accurate: previously the time and byte size was not correct

9.4.5 .. 9.4.6

• Small tweaks to frontend build error styling
• Add pushstate flag as a boolean so it doesn't swallow entry

9.4.3

• Disable cache control for serve-static, I've found this greatly reduces load time
• Slight change to package.json scripts so they work on Windows

9.4.2

• Improve Windows terminal color support, fixes #179

9.4.0

• Improve build error parsing and rendering

9.3.0

... (truncated)

Commits

• fc43424 11.8.4
• bb75ca0 updating deps
• 43f9645 11.8.3
• 37229dd use new prepublishOnly
• c2e81c4 11.8.2
• 80cffc9 package lock dep audit
• 8c5721c 11.8.1
• f072380 bump deps
• 2343724 Merge branch 'master' of https://github.com/mattdesl/budo
• 8886633 11.8.0
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/googlecreativelab/teachable-machine-boilerplate/network/alerts).