Bump shescape from 1.6.4 to 2.0.0

[dependabot[bot]]

Bumps shescape from 1.6.4 to 2.0.0.

Release notes

Sourced from shescape's releases.

Release v2.0.0

• BREAKING CHANGE: Change main API from an object to a class. (#963)
• BREAKING CHANGE: Drop support for Node.js ^10.13.0, ^12, 14.0.0 through 14.18.0, and 16.0.0 through 16.13.0. (#963)
• BREAKING CHANGE: Drop the interpolation option. (#963)
• BREAKING CHANGE: Enable the flagProtection option by default. (#963)
• BREAKING CHANGE: Reject non-array inputs to escapeAll & quoteAll. (#963)
• BREAKING CHANGE: Reject unresolved shells. (#963)
• BREAKING CHANGE: Reject unsupported shells. (#963)
• Bump dependency which from v2 to v3. (#963)
• Don't resolve default shell when shell option is falsy. (#963)

Release v1.7.4

• Fix potential silent executable lookup failure for Windows. (#1142)
• Support more valid shell values for Windows. (#1137)

Release v1.7.3

• Change escaping of carriage return characters for CMD and Csh. (#1094)
• Fix TypeScript type declarations for "shescape/testing". (#1083)
• Fix TypeScript type exports for CommonJS use. (#1082)

Release v1.7.2

• Fix incorrect escaping of " when escaping for CMD. (#1022)
• Fix incorrect escaping of " when escaping for PowerShell. (#1023)
• Fix incorrect escaping of " when quoting for PowerShell. (#1023)
• Fix incorrect escaping of % when quoting for CMD. (#986, #998)

Release v1.7.1

• Add % escaping for CMD. (#982)
• Correct documented behavior of quoting functions. (#969)
• Expand injection strings to cover environment variables. (#982)
• Fix incorrect escaping of $ and backticks for PowerShell. (#984)
• Improve quoting functionality for PowerShell. (#983)

Release v1.7.0

• Add flag protection option. (#908)
• Add @since information to API options. (#909)
• Add options to the API documentation. (#936)

Release v1.6.7

• Provide injection strings for testing purposes. (#902)
• Update the package homepage. (#827)

Release v1.6.6

• Add support for Node.js v20. (#823)
• Provide testing utilities. (#710)
• Update type exports to be compatible with the TypeScript compiler option "moduleResolution": "bundler". (#761)

Release v1.6.5

... (truncated)

Changelog

Sourced from shescape's changelog.

[2.0.0] - 2023-09-07

• BREAKING CHANGE: Change main API from an object to a class. (#963)
• BREAKING CHANGE: Drop support for Node.js ^10.13.0, ^12, 14.0.0 through 14.18.0, and 16.0.0 through 16.13.0. (#963)
• BREAKING CHANGE: Drop the interpolation option. (#963)
• BREAKING CHANGE: Enable the flagProtection option by default. (#963)
• BREAKING CHANGE: Reject non-array inputs to escapeAll & quoteAll. (#963)
• BREAKING CHANGE: Reject unresolved shells. (#963)
• BREAKING CHANGE: Reject unsupported shells. (#963)
• Bump dependency which from v2 to v3. (#963)
• Don't resolve default shell when shell option is falsy. (#963)

[1.7.4] - 2023-08-21

• Fix potential silent executable lookup failure for Windows. (#1142)
• Support more valid shell values for Windows. (#1137)

[1.7.3] - 2023-08-07

• Change escaping of carriage return characters for CMD and Csh. (#1094)
• Fix TypeScript type declarations for "shescape/testing". (#1083)
• Fix TypeScript type exports for CommonJS use. (#1082)

[1.7.2] - 2023-07-07

• Fix incorrect escaping of " when escaping for CMD. (#1022)
• Fix incorrect escaping of " when escaping for PowerShell. (#1023)
• Fix incorrect escaping of " when quoting for PowerShell. (#1023)
• Fix incorrect escaping of % when quoting for CMD. (#986, #998)

[1.7.1] - 2023-06-21

• Add % escaping for CMD. (#982)
• Correct documented behavior of quoting functions. (#969)
• Expand injection strings to cover environment variables. (#982)
• Fix incorrect escaping of $ and backticks for PowerShell. (#984)
• Improve quoting functionality for PowerShell. (#983)

[1.7.0] - 2023-06-12

• Add flag protection option. (#908)
• Add @since information to API options. (#909)
• Add options to the API documentation. (#936)

[1.6.7] - 2023-05-29

• Provide injection strings for testing purposes. (#902)
• Update the package homepage. (#827)

... (truncated)

Commits

• 8c210f7 Release v2.0.0 (#1181)
• 85a0743 Start v2.0.0 (#963)
• 4ae03a6 Bump actions/upload-artifact from 3.1.2 to 3.1.3 (#1180)
• cd10c2b Bump @​arethetypeswrong/cli from 0.7.1 to 0.10.1 (#1179)
• f76bc62 Audit in CI only if package-lock.json changes (#1170)
• 9c96c65 Pin Node.js to 20.5.1 (#1178)
• f92c189 Bump markdownlint-cli from 0.35.0 to 0.36.0 (#1177)
• 57ac0cc Bump @​fast-check/ava from 1.1.4 to 1.1.6 (#1175)
• 91366b3 Bump actions/checkout from 3.5.3 to 4.0.0 (#1176)
• 02141f3 Bump aquasecurity/trivy-action from 0.11.2 to 0.12.0 (#1174)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions[bot]]

Thank you for your contribution to this project!

This pull request has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs.

[dependabot[bot]]

Superseded by #737.