chore(deps): bump tough-cookie and pkg

[dependabot[bot]]

Removes tough-cookie. It's no longer used after updating ancestor dependency pkg. These dependencies need to be updated together.

Removes tough-cookie

Updates pkg from 4.4.9 to 5.8.1

Release notes

Sourced from pkg's releases.

5.8.1

Patches

• Producer: properly call "prebuild-install" if N-API is used: dd9de59c9fca2751bf5d22b57bd9b03d43e85e80
• Chore: clean up obsolete eslint disable comments: #1760
• Chore: add prettier check in linting step: #1764
• Chore: separate individual test scripts: #1759
• Chore: use @types/babel__generator package: #1755
• Chore: remove unused entry: #1766
• Chore: upgrade actions runners: #1767
• Style: fix typo in test-99-#1192/main.js: #1790
• Chore: bump prebuild-install@7.1.1: #1788
• Fix: add force flag to codesign to avoid already signed error: #1756

Credits

Huge thanks to @​ignatiusmb, @​eltociear, @​PraveenAnaparthi, and @​brianunlam for helping!

5.8.0

Highlights

• Support more language features, including but not limited to classPrivateMethods (#1248, #1249)
  • Note: pkg uses Babel to trace dependencies. It does NOT transform your sources. You should make sure that your code can run on the target Node.js version.

What's Changed

• Bump to vercel/pkg-fetch@v3.4.2 by @​jesec in vercel/pkg#1693
  • Add Node 14.20.0, 16.16.0 and 18.5.0 binaries
  • https://nodejs.org/en/blog/vulnerability/july-2022-security-releases
• detector: use Babel AST and default plugins by @​jesec in vercel/pkg#1648
• test: rearrange and fix order by @​jesec in vercel/pkg#1650
• fix: typo in fabricator.ts by @​eltociear in vercel/pkg#1661

New Contributors

• @​eltociear made their first contribution in vercel/pkg#1661

Full Changelog: https://github.com/vercel/pkg/compare/5.7.0...5.8.0

5.7.0

Highlights

• Node 18 is now supported!

What's Changed

• Bump to vercel/pkg-fetch@v3.4.1 by @​jesec in vercel/pkg#1616
  • No longer take NODE_OPTIONS from the environment of the end-user. Only the users (developers who use pkg to package their project) should have control over the flags via the "bake in" (--options) mechanism (Fixes: vercel/pkg#954, vercel/pkg#989, vercel/pkg#1194, vercel/pkg#1517)
  • Patched Node: bump to 16.15.0, add 18.1.0 and drop 17
• fix broken tests on node 12; latest pnpm requires node >= 14.19 by @​kldzj in vercel/pkg#1613
• dependencies: bump (minor) by @​jesec in vercel/pkg#1615
• fix(bootstrap): prevent to override existing node addon file by @​renkei in vercel/pkg#1611

New Contributors

... (truncated)

Commits

• 5dc987b 5.8.1
• f19285d fix: add force flag to codesign to avoid already signed error (#1756)
• e3ac490 chore: bump prebuild-install@7.1.1 (#1788)
• be1123c style: fix typo in test-99-#1192/main.js (#1790)
• 614c02a chore: upgrade actions runners (#1767)
• 39e9985 chore: remove unused entry (#1766)
• b8deba4 chore: use @types/babel__generator package (#1755)
• 332c7d9 chore: separate individual test scripts (#1759)
• 6efa7cf chore: add prettier check in linting step (#1764)
• 56135b5 chore: clean up obsolete eslint disable comments (#1760)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by leerobinson, a new releaser for pkg since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/rikumi/iconsur/network/alerts).