Bump glob-parent and vinyl-fs

[dependabot[bot]]

Bumps glob-parent to 6.0.2 and updates ancestor dependency vinyl-fs. These dependencies need to be updated together.

Updates glob-parent from 3.1.0 to 6.0.2

Release notes

Sourced from glob-parent's releases.

glob-parent v6.0.2

Bug Fixes

• Improve performance (#53) (843f8de)

glob-parent v6.0.1

Bug Fixes

• Resolve ReDoS vulnerability from CVE-2021-35065 (#49) (3e9f04a)

glob-parent v6.0.0

⚠ BREAKING CHANGES

• Correct mishandled escaped path separators (#34)
• upgrade scaffold, dropping node <10 support

Bug Fixes

• Correct mishandled escaped path separators (#34) (32f6d52), closes #32

Miscellaneous Chores

• upgrade scaffold, dropping node <10 support (e83d0c5)

v5.1.2

Bug Fixes

• eliminate ReDoS (#36) (f923116)

v5.1.1

Bug Fixes

• unescape exclamation mark (#26) (a98874f)

v5.1.0

Features

... (truncated)

Changelog

Sourced from glob-parent's changelog.

6.0.2 (2021-09-29)

Bug Fixes

• Improve performance (#53) (843f8de)

6.0.1 (2021-07-20)

Bug Fixes

• Resolve ReDoS vulnerability from CVE-2021-35065 (#49) (3e9f04a)

6.0.0 (2021-05-03)

⚠ BREAKING CHANGES

• Correct mishandled escaped path separators (#34)
• upgrade scaffold, dropping node <10 support

Bug Fixes

• Correct mishandled escaped path separators (#34) (32f6d52), closes #32

Miscellaneous Chores

• upgrade scaffold, dropping node <10 support (e83d0c5)

5.1.1 (2021-01-27)

Bug Fixes

• unescape exclamation mark (#26) (a98874f)

5.1.0 (2021-01-27)

Features

• add flipBackslashes option to disable auto conversion of slashes (closes #24) (#25) (eecf91d)

5.0.0 (2021-01-27)

⚠ BREAKING CHANGES

• Drop support for node <6 & bump dependencies

Miscellaneous Chores

• Drop support for node <6 & bump dependencies (896c0c0)

4.0.0 (2021-01-27)

... (truncated)

Commits

• 26ce5ec chore: release 6.0.2 (#54)
• 98c4781 chore: Run prettier
• 843f8de fix: Improve performance (#53)
• 3ad3690 chore: Run prettier
• e1a15e1 chore: release 6.0.1 (#52)
• 8cdac1e chore: Run prettier
• 3e9f04a fix: Resolve ReDoS vulnerability from CVE-2021-35065 (#49)
• 3ad9597 chore: Run prettier
• 6fd137b chore: release 6.0.0 (#41)
• 32f6d52 fix!: Correct mishandled escaped path separators (#34)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by phated, a new releaser for glob-parent since your current version.

Updates vinyl-fs from 3.0.3 to 4.0.0

Release notes

Sourced from vinyl-fs's releases.

vinyl-fs v4.0.0

⚠ BREAKING CHANGES

• Prefer symlink property set on Vinyl object over its path (#345)
• Avoid error and reflect filesystem stat if futimes not implemented (#341)
• Consider the greater of ctime & mtime when comparing since option (#340)
• Normalize repository, dropping node <10.13 support
• Switch stream implementation to streamx (#333)

Features

• Consider the greater of ctime & mtime when comparing since option (#340) (9f907ba)
• Convert Windows-style paths in src() to proper globs (910c8a5)
• Prefer symlink property set on Vinyl object over its path (#345) (0ac27a2)
• Replace lazystream with streamx Composer (#344) (a80dae3)
• Switch stream implementation to streamx (#333) (910c8a5)
• Test against streams from core, streamx, and readable-stream (910c8a5)

Bug Fixes

• Add regression test for negative relative globs (#343) (ebe6498)
• Avoid error and reflect filesystem stat if futimes not implemented (#341) (9ba20fd)
• Correct regression with src using arrays of globs (#342) (5659934)
• Reference correct property name in integration testing (#320) (df245a4)
• Workaround symlink stat bug in Node 10 on Windows (910c8a5)

Miscellaneous Chores

• Normalize repository, dropping node <10.13 support (910c8a5)

Changelog

Sourced from vinyl-fs's changelog.

4.0.0 (2023-06-11)

⚠ BREAKING CHANGES

• Prefer symlink property set on Vinyl object over its path (#345)
• Avoid error and reflect filesystem stat if futimes not implemented (#341)
• Consider the greater of ctime & mtime when comparing since option (#340)
• Normalize repository, dropping node <10.13 support
• Switch stream implementation to streamx (#333)

Features

• Consider the greater of ctime & mtime when comparing since option (#340) (9f907ba)
• Convert Windows-style paths in src() to proper globs (910c8a5)
• Prefer symlink property set on Vinyl object over its path (#345) (0ac27a2)
• Replace lazystream with streamx Composer (#344) (a80dae3)
• Switch stream implementation to streamx (#333) (910c8a5)
• Test against streams from core, streamx, and readable-stream (910c8a5)

Bug Fixes

• Add regression test for negative relative globs (#343) (ebe6498)
• Avoid error and reflect filesystem stat if futimes not implemented (#341) (9ba20fd)
• Correct regression with src using arrays of globs (#342) (5659934)
• Reference correct property name in integration testing (#320) (df245a4)
• Workaround symlink stat bug in Node 10 on Windows (910c8a5)

Miscellaneous Chores

• Normalize repository, dropping node <10.13 support (910c8a5)

Commits

• c08ab4b chore: Release 4.0.0 (#338)
• 0ac27a2 feat!: Prefer symlink property set on Vinyl object over its path (#345)
• a80dae3 feat: Replace lazystream with streamx Composer (#344)
• ebe6498 fix: Add regression test for negative relative globs (#343)
• 5659934 fix: Correct regression with src using arrays of globs (#342)
• 9ba20fd fix!: Avoid error and reflect filesystem stat if futimes not implemented (#341)
• 9f907ba feat!: Consider the greater of ctime & mtime when comparing since option (#340)
• 061d1b3 chore: Add integration test for re-assigning a stream to contents (#339)
• 0baaf36 chore: Run prettier
• 910c8a5 feat!: Switch stream implementation to streamx (#333)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/jokeyrhyme/node-init.js/network/alerts).