chore(deps): bump formidable and superagent

[dependabot[bot]]

Bumps formidable to 3.5.1 and updates ancestor dependency superagent. These dependencies need to be updated together.

Updates formidable from 1.2.6 to 3.5.1

Release notes

Sourced from formidable's releases.

v3.2.5

No release notes provided.

3.2.4

No release notes provided.

3.1.4

https://github.com/node-formidable/formidable/blob/master/CHANGELOG.md

Changelog

Sourced from formidable's changelog.

3.5.1

• fix: (#945) multipart parser fix: flush or fail always (don't hang)

3.5.0

• feature: (#944) Dual package: Can be imported as ES module and required as commonjs module

3.4.0

• feature: (#940) form.parse returns a promise if no callback is provided
• it resolves with an array [fields, files]

3.3.2

• feature: (#855) add options.createDirsFromUploads, see README for usage
• form.parse is an async function (ignore the promise)
• benchmarks: add e2e becnhmark with as many request as possible per second
  • npm run to display all the commands
• mark as latest on npm

3.2.5

• fix: (#881) fail earlier when maxFiles is exceeded

3.2.4

• fix: (#857) improve keep extension
• The code from before 3.2.4 already removed some characters from the file extension. But not always. So it was inconsistent.
• The new code cuts the file extension at the first invalid character (invalid in a file extension).
• The characters that are considered invalid inside a file extension are all except the . numbers and a-Z.
• This change only has an effect if filename option is not used and keepextension option is used

3.2.3

• fix: (#852) end event is emitted once

3.2.2

• refactor: (#801)

3.2.1

• fix: do not let empty file on error (#796)
• it was probably due to the fact that .destroy on a file stream does not always complete on time

... (truncated)

Commits

• See full diff in compare view

Updates superagent from 3.8.3 to 9.0.1

Release notes

Sourced from superagent's releases.

v9.0.1

• Merge pull request #1796 from mmmmmrob/patch-2 68f7bb1
• Merge branch 'master' into patch-2 450f7b2
• Merge pull request #1794 from SukkaW/replace-polyfill-io ea633d7
• Merge pull request #1791 from HannesOberreiter/patch-1 e334068
• Update README.md a5c39b2
• Add superagent-cheerio to the readme 0165c7c
• docs: no longer recommend polyfill.io da9ff20
• Update README.md c4205e0

https://github.com/ladjs/superagent/compare/v9.0.0...v9.0.1

v9.0.0

• fix: fixed ci job not installing npm deps 489708e
• fix: fix numeric identifier issue ea2577e
• fix: drop support for node < v14.18.0 due to formidable node:fs scope import statement (per #1800) 23fe5ab
• Merge pull request #1800 from tomstrong64/master 03de30c
• fix: formidable v3 multipart form contents mapped to expected format b9c7837
• Update formidable 3ee138d
• test: replace should with node:assert (#1782) 1c8338b
• test: replace should with node:assert (#1780) 0dc80d1
• Merge pull request #1777 from jimmywarting/classify 83e92cb
• classify agent fca95a3

https://github.com/ladjs/superagent/compare/v8.1.2...v9.0.0

v8.1.2

• Merge pull request #1776 from bjornua/bjornba/bigint-guard-fix b83887a
• fix: handle BigInts that has a .toJSON property 36088a6

https://github.com/ladjs/superagent/compare/v8.1.1...v8.1.2

v8.1.1

• Revert "chore: bump deps, xo linting" 6feca3f

https://github.com/ladjs/superagent/compare/v8.1.0...v8.1.1

v8.1.0

• chore: bump deps, xo linting 8b5400b
• Merge pull request #1764 from tobiasdiez/es6_http2wrapper 2fd4292
• Merge pull request #1766 from slickmb/fix/emit_end_when_unzipping a29a062
• Merge pull request #1773 from NikoRaisanen/bugfix-handle-bigint a62866a
• Merge pull request #1774 from afharo/remove-v14-destroy-before-abort-hack 4691583
• fix: do not force-set req.destroyed = true on abort 70c464c
• fix: fixed BigInt sent as json 259a43f
• fix: only emit &#39;end&#39; after unzip is done writing ef969fa
• feat: migrate to es6 class instead of util.inherit in http2wrapper 7801408
• fix: fixed eslint-plugin-compat issue 73c7efb
• chore: fixed rimraf dep causing tests to fail 988636f

... (truncated)

Changelog

Sourced from superagent's changelog.

This HISTORY log is deprecated

Please see GitHub releases page for the current changelog.

4.1.0 (2018-12-26)

• .connect() IP/DNS override option (Kornel)
• .trustLocalhost() option for allowing broken HTTPS on localhost
• .abort() used with promises rejects the promise.

4.0.0 (2018-11-17)

Breaking changes

• Node.js v4 has reached it's end of life, so we no longer support it. It's v6+ or later. We recommend Node.js 10.
• We now use ES6 in the browser code, too.
  • If you're using Browserify or Webpack to package code for Internet Explorer, you will also have to use Babel.
  • The pre-built node_modules/superagent.js is still ES5-compatible.
• .end(…) returns undefined instead of the request. If you need the request object after calling .end() (and you probably don't), save it in a variable and call request.end(…). Consider not using .end() at all, and migrating to promises by calling .then() instead.
• In Node, responses with unknown MIME type are buffered by default. To get old behavior, if you use custom unbuffered parsers, add .buffer(false) to requests or set superagent.buffer[yourMimeType] = false.
• Invalid uses of .pipe() throw.

Minor changes

• Throw if req.abort().end() is called
• Throw if using unsupported mix of send and field
• Reject .end() promise on all error events (Kornel Lesiński)
• Set https.servername from the Host header (Kornel Lesiński)
• Leave backticks unencoded in query strings where possible (Ethan Resnick)
• Update node-mime to 2.x (Alexey Kucherenko)
• Allow default buffer settings based on response-type (shrey)
• response.buffered is more accurate.

Commits

• b368f62 9.0.1
• 68f7bb1 Merge pull request #1796 from mmmmmrob/patch-2
• 450f7b2 Merge branch 'master' into patch-2
• ea633d7 Merge pull request #1794 from SukkaW/replace-polyfill-io
• e334068 Merge pull request #1791 from HannesOberreiter/patch-1
• fc27f36 9.0.0
• 489708e fix: fixed ci job not installing npm deps
• ea2577e fix: fix numeric identifier issue
• 23fe5ab fix: drop support for node < v14.18.0 due to formidable node:fs scope import ...
• 03de30c Merge pull request #1800 from tomstrong64/master
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by titanism, a new releaser for superagent since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/pact-foundation/pact-js/network/alerts).

[mefellows]

Closing as superagent should be removed as a dependency full stop.

[dependabot[bot]]

OK, I won't notify you again about this release, but will get in touch when a new version is available.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.