Bump bson from 0.5.5 to 4.0.2

[dependabot[bot]]

Bumps bson from 0.5.5 to 4.0.2.

Changelog

*Sourced from [bson's changelog](https://github.com/mongodb/js-bson/blob/master/HISTORY.md).* > ## [4.0.2](https://github.com/mongodb/js-bson/compare/v4.0.0...v4.0.2) (2019-03-08) > > > ### Bug Fixes > > * **buffer:** don't use deprecated Buffer constructors ([7bb9c57](https://github.com/mongodb/js-bson/commit/7bb9c57)) > * **Buffer:** import buffer for binary, decimal128, and fnv1a ([6be7b8d](https://github.com/mongodb/js-bson/commit/6be7b8d)) > * **ejson:** enable serialization of legacy `ObjectID` ([ba98ccb](https://github.com/mongodb/js-bson/commit/ba98ccb)), closes [#303](https://github-redirect.dependabot.com/mongodb/js-bson/issues/303) > * **ejson:** support array for replacer parameter in `EJSON.stringify` ([9f43809](https://github.com/mongodb/js-bson/commit/9f43809)), closes [#303](https://github-redirect.dependabot.com/mongodb/js-bson/issues/303) [#302](https://github-redirect.dependabot.com/mongodb/js-bson/issues/302) [#303](https://github-redirect.dependabot.com/mongodb/js-bson/issues/303) > * **ejson-serialize:** prevent double serialization for nested documents ([ab790c9](https://github.com/mongodb/js-bson/commit/ab790c9)), closes [#303](https://github-redirect.dependabot.com/mongodb/js-bson/issues/303) > * **object-id:** correct serialization of old ObjectID types ([8d57a8c](https://github.com/mongodb/js-bson/commit/8d57a8c)) > * **timestamp:** getTimestamp support times beyond 2038 ([a0820d5](https://github.com/mongodb/js-bson/commit/a0820d5)) > * 4.x-1.x interop (incl. ObjectID _bsontype) ([f4b16d9](https://github.com/mongodb/js-bson/commit/f4b16d9)) > > > > > ## [4.0.1](https://github.com/mongodb/js-bson/compare/v4.0.0...v4.0.1) (2018-12-06) > > > ### Bug Fixes > > * **object-id:** correct serialization of old ObjectID types ([8d57a8c](https://github.com/mongodb/js-bson/commit/8d57a8c)) > > > > > # [4.0.0](https://github.com/mongodb/js-bson/compare/v3.0.2...v4.0.0) (2018-11-13) > > ### Migration Guide > > Please see the [migration guide](https://github.com/mongodb/js-bson/blob/master/docs/upgrade-to-v4.md) for detailed discussion of breaking changes in this release. > > ### Bug Fixes > > * **buffer:** replace deprecated Buffer constructor ([5acdebf](https://github.com/mongodb/js-bson/commit/5acdebf)) > * **dbPointer:** fix utf8 bug for dbPointer ([018c769](https://github.com/mongodb/js-bson/commit/018c769)) > * **deserialize:** fix deserialization of 0xFFFD ([c682ae3](https://github.com/mongodb/js-bson/commit/c682ae3)), closes [#277](https://github-redirect.dependabot.com/mongodb/js-bson/issues/277) > * **ext-json:** deserialize doubles as `Number` in relaxed mode ([a767fa1](https://github.com/mongodb/js-bson/commit/a767fa1)) > * **ObjectId:** will now throw if an invalid character is passed ([6f30b4e](https://github.com/mongodb/js-bson/commit/6f30b4e)) > * **ObjectID:** ObjectId.isValid should check buffer length ([06af813](https://github.com/mongodb/js-bson/commit/06af813)) > * **package:** `browser` section needs to point to correct index ([08337e3](https://github.com/mongodb/js-bson/commit/08337e3)) > * **random-bytes:** fallback to insecure path if require is null ([963b12b](https://github.com/mongodb/js-bson/commit/963b12b)) > * **random-bytes:** wrap crypto require in try/catch for fallback ([47fd5f7](https://github.com/mongodb/js-bson/commit/47fd5f7)) > * **serializer:** do not use checkKeys for $clusterTime ([cbb4724](https://github.com/mongodb/js-bson/commit/cbb4724)) > * **serializer:** map insert expects only string keys ([aba3a18](https://github.com/mongodb/js-bson/commit/aba3a18)) > > > ### Code Refactoring > > ... (truncated)

Commits

- [`51862d8`](https://github.com/mongodb/js-bson/commit/51862d8610aa10b6566b697a065f358797b4d0fa) chore(release): 4.0.2 - [`53ef8ad`](https://github.com/mongodb/js-bson/commit/53ef8ad84cc303bde9ff6b38d820ff48e2dcfae3) chore: fix linting errors - [`f4b16d9`](https://github.com/mongodb/js-bson/commit/f4b16d91e969508c6b77b7e1f7b62bc2bc37b126) fix: 4.x-1.x interop (incl. ObjectID _bsontype) - [`6be7b8d`](https://github.com/mongodb/js-bson/commit/6be7b8de60d3e1f060cbfb8d5829aa3515e6e6db) fix(Buffer): import buffer for binary, decimal128, and fnv1a - [`f3c2a27`](https://github.com/mongodb/js-bson/commit/f3c2a2755c49f16c81be0edfe6a7dd33ef2e4e3f) chore: update package-lock.json - [`5a69b8b`](https://github.com/mongodb/js-bson/commit/5a69b8b443a3b6c23fceef1e1e1bd7d0674fce46) chore: fix linting errors - [`7bb9c57`](https://github.com/mongodb/js-bson/commit/7bb9c57db1c5f862dee4762fd2211e2a722cb75d) fix(buffer): don't use deprecated Buffer constructors - [`a0820d5`](https://github.com/mongodb/js-bson/commit/a0820d51ed1b759e0cfc362f0fce3bc7a0e82cb0) fix(timestamp): getTimestamp support times beyond 2038 - [`ba98ccb`](https://github.com/mongodb/js-bson/commit/ba98ccb432a389f2fddfd75170cd2fc0a326b06e) fix(ejson): enable serialization of legacy `ObjectID` - [`ab790c9`](https://github.com/mongodb/js-bson/commit/ab790c9b3765a1500a5137d6f9062f632cba9108) fix(ejson-serialize): prevent double serialization for nested documents - Additional commits viewable in [compare view](https://github.com/mongodb/js-bson/compare/V0.5.5...v4.0.2)

Maintainer changes

This version was pushed to npm by [daprahamian](https://www.npmjs.com/~daprahamian), a new releaser for bson since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/linagora/hublin/network/alerts).