Bump qs, grunt-contrib-connect and grunt-contrib-watch

[dependabot[bot]]

Bumps qs to 6.5.3 and updates ancestor dependencies qs, grunt-contrib-connect and grunt-contrib-watch. These dependencies need to be updated together.

Updates qs from 6.5.2 to 6.5.3

Changelog

Sourced from qs's changelog.

6.5.3

• [Fix] parse: ignore __proto__ keys (#428)
• [Fix] utils.merge`: avoid a crash with a null target and a truthy non-array source
• [Fix] correctly parse nested arrays
• [Fix] stringify: fix a crash with strictNullHandling and a custom filter/serializeDate (#279)
• [Fix] utils: merge: fix crash when source is a truthy primitive & no options are provided
• [Fix] when parseArrays is false, properly handle keys ending in []
• [Fix] fix for an impossible situation: when the formatter is called with a non-string value
• [Fix] utils.merge: avoid a crash with a null target and an array source
• [Refactor] utils: reduce observable [[Get]]s
• [Refactor] use cached Array.isArray
• [Refactor] stringify: Avoid arr = arr.concat(...), push to the existing instance (#269)
• [Refactor] parse: only need to reassign the var once
• [Robustness] stringify: avoid relying on a global undefined (#427)
• [readme] remove travis badge; add github actions/codecov badges; update URLs
• [Docs] Clean up license text so it’s properly detected as BSD-3-Clause
• [Docs] Clarify the need for "arrayLimit" option
• [meta] fix README.md (#399)
• [meta] add FUNDING.yml
• [actions] backport actions from main
• [Tests] always use String(x) over x.toString()
• [Tests] remove nonexistent tape option
• [Dev Deps] backport from main

Commits

• 298bfa5 v6.5.3
• ed0f5dc [Fix] parse: ignore __proto__ keys (#428)
• 691e739 [Robustness] stringify: avoid relying on a global undefined (#427)
• 1072d57 [readme] remove travis badge; add github actions/codecov badges; update URLs
• 12ac1c4 [meta] fix README.md (#399)
• 0338716 [actions] backport actions from main
• 5639c20 Clean up license text so it’s properly detected as BSD-3-Clause
• 51b8a0b add FUNDING.yml
• 45f6759 [Fix] fix for an impossible situation: when the formatter is called with a no...
• f814a7f [Dev Deps] backport from main
• Additional commits viewable in compare view

Updates grunt-contrib-connect from 0.7.1 to 3.0.0

Changelog

Sourced from grunt-contrib-connect's changelog.

v3.0.0: date: 2020-07-16 changes: - Requires node 10+. - Updated dependencies. v2.1.0: date: 2019-09-03 changes: - Update package lock. - Allow all configuration options of livereload to be passed through. v2.0.0: date: 2018-09-09 changes: - Drop Node.js < 6 support. - Update all dependencies and switch to node-http2. - Add secureProtocol in httpsOptions. - Fix open.appName. - Allow passing serve-index options. v1.0.2: date: 2016-04-27 changes: - Fixed http2 dependencies and stopped using the fork. v1.0.1: date: 2016-03-22 changes: - Fixed dependencies behind corporate proxy server. v1.0.0: date: 2016-03-04 changes: - Use predefined logger format with colored http status. - Update deps and docs. - HTTP2 support. - Other fixes. v0.11.2: date: 2015-08-03 changes: - Documentation fixes. v0.11.1: date: 2015-08-01 changes: - Fixes debug logging. v0.11.0: date: 2015-07-30 changes: - Update to connect 3. v0.10.1: date: 2015-04-03 changes: - Fixes npm corruption issue. v0.10.0:

... (truncated)

Commits

• 5c3d0e7 v3.0.0
• 0df44c9 Merge pull request #262 from gruntjs/upt-depxa
• caa1331 Update dependencies
• ace8bd8 Merge pull request #260 from gruntjs/dependabot/npm_and_yarn/lodash-4.17.19
• eb4496c Bump lodash from 4.17.15 to 4.17.19
• 4f3954d Merge pull request #261 from gruntjs/add-actions
• 434ecd6 Add actions
• 15b3a28 Merge pull request #257 from gruntjs/dependabot/npm_and_yarn/lodash-4.17.15
• 801dcda Bump lodash from 4.17.10 to 4.17.15
• b6e703d v2.1.0
• Additional commits viewable in compare view

Updates grunt-contrib-watch from 0.6.1 to 1.1.0

Changelog

Sourced from grunt-contrib-watch's changelog.

v1.1.0: date: 2018-05-12 changes: - Update to tiny-lr@1.1.1, lodash@4.17.10, async@2.6.0 v1.0.1: date: 2018-04-20 changes: - Update to gaze@1.1, lodash@4 v1.0.0: date: 2016-03-12 changes: - Updated tiny-lr, gaze, async and lodash dependencies. - Fix endless loop issue with atBegin/nospawn. - Expose hostname parameter of tiny-lr. - Support cwd.event to emit events relative to path. - Removed peerDependencies setting.

Commits

• 3b7ddf4 v1.1.0
• 72b1214 Updating dependencies, async, lodash and tiny-lr
• 5adb27c Merge pull request #543 from digitalbazaar/master
• 6ec71e9 v1.0.1
• 7d20933 Update copyright year
• e3d19df Update ci configs
• d117574 Updating ci configs
• 99410a7 README.md: Fixed typos (#536)
• f07311b Update tiny-lr dependency to 1.x
• 7f8cf80 Add local grunt-cli
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/moment/momentjs.com/network/alerts).

[dependabot[bot]]

Looks like these dependencies are up-to-date now, so this is no longer needed.