chore(deps): bump github.com/tdewolff/minify/v2 from 2.20.10 to 2.20.17

[dependabot[bot]]

Bumps github.com/tdewolff/minify/v2 from 2.20.10 to 2.20.17.

Release notes

Sourced from github.com/tdewolff/minify/v2's releases.

v2.20.17

• cmd: output statistics now have fixed length, removing dependency on go-humanize
• cmd: choose newest atime/mtime to preserve timestamps when using --bundle; allow setting preserve with --bundle; add warnings when ownership/permissions differ between input files when using --bundle; see tdewolff/minify#671
• cmd: don't preserve parent directories for --bundle, see tdewolff/minify#671
• HTML: keep original attribute quote for all attributes, fixes tdewolff/minify#670
• JS: fix precedence of OptionalChaining expression
• JS: fix parsing of 'export default expr' where expression can only be an assignment expression

v2.20.16

• cmd: revert to report error when specified file has no extension for a minifier
• JS: fix memory bug with bang-comments

v2.20.15

• Fix ResponseWriter to not minify if there is no supported RequestURI extension or supported Content-Type header, fixes tdewolff/minify#660
• JS: fix parsing of comments in expressions and keep all bang-comments at the top of the statement list, fixes tdewolff/minify#664
• cmd: fix printing an error when writing to directory but it doesn't exist
• cmd: add Debug logging class, don't print error when can't infer mimetype from input but is excluded by --exclude
• cmd: update argp package with some fixes

v2.20.14

• Update tdewolff/parse: revert ignoring error in lexer of identifier after number to be on the safe side (it should be caught by the parser nonetheless)

v2.20.13

• JS: update tdewolff/parse and fix tdewolff/minify#656
• HTML: rename KeepConditionalComments => KeepSpecialComments, fixes tdewolff/minify#657
• JS: support parsing binary/octal/hexadecimal integers with big int suffix, fixes https://redirect.github.com/tdewolff/parse/issues/116
• JS: fix parsing of for/for-of/for-in regarding LHSExpr vs Expr
• JS: fix parsing of semicolon after import() CallExpression

v2.20.12

JS: fix escaping of single/double/backtick quotes in strings when encoded as unicode escape literal, fixes tdewolff/minify#654

v2.20.11

• HTML: fix whitespace after and , see tdewolff/minify#611
• JS: fix converting \n and \r to unicode in string and template literals tdewolff/minify#653

Commits

• a8e2179 Merge branch 'master' of github.com:tdewolff/minify
• c39145f Fix security of JS dependency
• a585a49 Merge pull request #655 from tdewolff/dependabot/npm_and_yarn/bindings/js/nod...
• 8690ba5 Merge pull request #668 from tdewolff/dependabot/github_actions/golangci/gola...
• f503673 Merge pull request #667 from tdewolff/dependabot/github_actions/pypa/cibuildw...
• a72c2ec HTML: keep original attribute quote for all attributes, fixes #670
• c754bf5 cmd: don't preserve parent directories for --bundle, see #671
• 6b9175d cmd: choose newest atime/mtime to preserve timestamps when using --bundle; al...
• f27fd34 cmd: output statistics now have fixed length, removing dependency on go-humanize
• efe88dd Bump golangci/golangci-lint-action from 3 to 4
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot[bot]]

Superseded by #202.