Bump js-yaml and load-grunt-config

[dependabot[bot]]

Bumps js-yaml to 3.14.0 and updates ancestor dependency load-grunt-config. These dependencies need to be updated together.

Updates js-yaml from 3.4.6 to 3.14.0

Changelog

Sourced from js-yaml's changelog.

[3.14.0] - 2020-05-22

Changed

• Support safe/loadAll(input, options) variant of call.
• CI: drop outdated nodejs versions.
• Dev deps bump.

Fixed

• Quote = in plain scalars #519.
• Check the node type for !<?> tag in case user manually specifies it.
• Verify that there are no null-bytes in input.
• Fix wrong quote position when writing condensed flow, #526.

[3.13.1] - 2019-04-05

Security

• Fix possible code execution in (already unsafe) .load(), #480.

[3.13.0] - 2019-03-20

Security

• Security fix: safeLoad() can hang when arrays with nested refs used as key. Now throws exception for nested arrays. #475.

[3.12.2] - 2019-02-26

Fixed

• Fix noArrayIndent option for root level, #468.

[3.12.1] - 2019-01-05

Added

• Added noArrayIndent option, #432.

[3.12.0] - 2018-06-02

Changed

• Support arrow functions without a block statement, #421.

[3.11.0] - 2018-03-05

Added

• Add arrow functions suport for !!js/function.

Fixed

• Fix dump in bin/octal/hex formats for negative integers, #399.

[3.10.0] - 2017-09-10

Fixed

• Fix condenseFlow output (quote keys for sure, instead of spaces), #371, #370.

... (truncated)

Commits

• 34e5072 3.14.0 released
• 7b25c83 Browser files rebuild
• 6f73473 Dev deps bump
• 0c29349 Travis-CI: drop old nodejs versions
• 10be97e fix(loader): Add support for safe/loadAll(input, options)
• d6983dd Fix issue #526: wrong quote position writing condensed flow (#527)
• 93fbf7d fix issue 526 (wrong quote position writing condensed flow)
• e569cc7 readme: update titelift info
• 8fb2905 changelog format update
• 33c2236 Verify that there are no null-bytes in input
• Additional commits viewable in compare view

Updates load-grunt-config from 0.19.2 to 4.0.1

Release notes

Sourced from load-grunt-config's releases.

Release 4.0.1

Release 4.0.0

Release 3.0.2

Release 3.0.1

Release 3.0.1

Release 3.0.0-rc3

Release 2.0.1

Release 2.0.0

Release 1.0.2

Release 1.0.1

No release notes provided.

Release 1.0.0

No release notes provided.

Changelog

Sourced from load-grunt-config's changelog.

4.0.1 / 2021-08-20

• Debug version to investigate issue with js-yaml & js-yaml-js-types

4.0.0 / 2021-07-04

• Dropped support of CoffeeScript (breaking change)
• Removed package-lock.json
• Updated dependencies:
  • js-yaml from 3.13.1 to 4.1.0
  • cson from 5.1.0 to 7.20.0
  • glob 7.1.4 to 7.1.7
• Added dependencies:
  • js-yaml-js-types version 1.0.0
• Updated devDependencies:
  • grunt from 1.0.4 to 1.4.1
  • proxyquire from 2.1.1 to 2.1.3
  • grunt-gh-pages from 3.1.0 to 4.0.0
  • sinon from 7.3.2 to 11.1.1
• Added devDependencies:
  • grunt-mocha-cli 7.0.0
• Removed devDependencies:
  • grunt-simple-mocha

3.0.2 / 2021-07-04

• Updated dependencies:
  • lodash from 4.17.15 to 4.7.21

3.0.1 / 2019-09-10

• Allowed relative path for JS loading

3.0.0 / 2019-08-01

• Dropped support of node lower than 8
• Added yarn.lock
• Updated dependencies:
  • load-grunt-tasks from 4.0.0 to 5.1.0
  • lodash from 4.17.11 to 4.17.15
• Updated devDependencies

2.0.1 / 2019-07-25

• Updated dependencies:
  • lodash from 4.7.11 to 4.7.15
• Updated devDependencies

... (truncated)

Commits

• 26b9158 Release 4.0.1
• 1067941 - updated dependencies to latest versions
• c98250f Released 3.0.2
• 5e59e4b Merge pull request #190 from firstandthird/dependabot/npm_and_yarn/lodash-4.1...
• aca47e8 Bump lodash from 4.17.15 to 4.17.21
• 2539c63 small linter fix
• cbc64f4 Released 3.0.1
• 9d8f1eb Merge pull request #184 from zypA13510/patch-1
• 5b2aa3b fix(readfile): resolve relative path before require
• e5f90e3 Released 3.0.0
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/leapfrogtechnology/nepali-date-picker/network/alerts).

Note Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

[mesaugat]

@dependabot rebase

[dependabot[bot]]

Looks like these dependencies are up-to-date now, so this is no longer needed.