Bump minimist and nyc

[dependabot[bot]]

Bumps minimist and nyc. These dependencies needed to be updated together. Updates minimist from 1.2.0 to 1.2.6

Commits

• 7efb22a 1.2.6
• ef88b93 security notice for additional prototype pollution issue
• c2b9819 isConstructorOrProto adapted from PR
• bc8ecee test from prototype pollution PR
• aeb3e27 1.2.5
• 278677b 1.2.4
• 4cf1354 security notice
• 1043d21 additional test for constructor prototype pollution
• 6457d74 1.2.3
• 38a4d1c even more aggressive checks for protocol pollution
• Additional commits viewable in compare view

Updates nyc from 12.0.2 to 15.1.0

Changelog

Sourced from nyc's changelog.

15.1.0 (2020-06-01)

Features

• experimental: Support using --all with node.js ESM (#1320) (992359a)

15.0.1 (2020-04-02)

Bug Fixes

• Data merge concurrency limit to prevent OOM (#1293) (df34c1c), closes #1263
• Ignore insignificant lines when coalesce text report (#1300) (3a577f0), closes istanbuljs/istanbuljs#525

15.0.0 (2019-12-20)

⚠ BREAKING CHANGES

• The flow and jsx parser plugins are no longer enabled by default.
• Node.js 8 is now required to run nyc
• Remove NYC_ROOT_ID and NYC_INSTRUMENTER environmental variables.
• The root field has been removed from processinfo files.

Features

• Add --use-spawn-wrap=true option (#1169) (df4de4d)
• Add .cjs, .mjs, .ts, .tsx, .jsx to default extensions (#1110) (914b776), closes #1103
• Allow nyc instrument to instrument code in place (#1149) (7783284)
• Drop node.js 6, upgrade dependencies (#1134) (00c3b34)
• Filenames relative to project cwd in coverage reports (#1212) (5258e9f)
• Use @​istanbuljs/schema for yargs setup (#1194) (fd40d49)
• Use istanbul-lib-processinfo (#1145) (7943413)
• Use source base name to prefix cache files (#1144) (5c1b7a9)

Bug Fixes

• Avoid source-map module during signal-exit handler (#1191) (83eb629)
• Better error handling for main execution, reporting (#1229) (dfd629d)
• Correct handling of source-maps for pre-instrumented files (#1216) (8411a26), closes #1208
• Drop coverage produced by nyc --all for files that were tested (#1155) (fc1bbbf), closes #1113 #1124 #1148
• Honor eager setting (false by default) (#1179) (c18fb0a)
• Remove vestigial environment variables (#1078) (cfd3da0)

14.1.1 (2019-05-09)

... (truncated)

Commits

• de7baa4 chore(release): 15.1.0
• 992359a feat(experimental): Support using --all with node.js ESM (#1320)
• 086fd20 chore: Regenerate package-lock, update source-map-support test (#1314)
• b20f751 chore: add bugs (used, e.g., by npmjs) (#1313)
• 6898e88 chore: Fix CHANGELOG.md version header
• d9a76d5 chore(release): 15.0.1
• 3a577f0 fix: Ignore insignificant lines when coalesce text report (#1300)
• df34c1c fix: Data merge concurrency limit to prevent OOM (#1293)
• befbf08 chore: A test where nyc output help text to stderr was flaky (#1269)
• 9260a70 docs: Remove nyc containing object in json config examples (#1276)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by coreyfarrell, a new releaser for nyc since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/instructure/canvas-rce-api/network/alerts).

[CLAassistant]

Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
_{You have signed the CLA already but the status is still pending? Let us recheck it.}

[dependabot[bot]]

Looks like these dependencies are updatable in another way, so this is no longer needed.