Bump uglify-js, grunt-contrib-uglify, karma, karma-coverage and grunt-karma-coveralls

[dependabot[bot]]

Bumps uglify-js to 3.17.4 and updates ancestor dependencies uglify-js, grunt-contrib-uglify, karma, karma-coverage and grunt-karma-coveralls. These dependencies need to be updated together.

Updates uglify-js from 1.2.5 to 3.17.4

Release notes

Sourced from uglify-js's releases.

v3.17.4

Features

• simplify chained boolean & string expressions (a3918973887d8eede545372363e621c0319b8e54, ed7051b9bb0ce47294718fa192092f98642bc2c4)

Bug Fixes

• async generator function (5411360829a59fb9b38e5ac360620124a53a31be)
• compound assignment operator (19c471c16a52156cdea44cd0d911aa4f1cf18ff8)
• generator function (7edd10e5e508df42da8586afc994537598c83f25)
• immediately invoked function expression (8319badea8f5bc4348b80511813594f74e4daf15)
• logical operator (5a5200d657f2eb6c37026509afd683fe4f4fc84f)
• rest parameter (bccb1c3bd9155e1045e2fcac7dff2245250f7bcb)
• unary arithmetic operator (19c471c16a52156cdea44cd0d911aa4f1cf18ff8)

v3.17.3

Features

• improve heuristics for mangle.properties (3fa20866813f634d97d0958208b0bbf16977ae4d)
• enable domprops to be used under minify() (bd5fc4cb1b39d7a150daff1d41a5894ef217f462)
• improve compression of boolean & conditional expressions (80fc8625476f8ce3aada091251072359b350a990, dabcc39b5138b6e9c84bfd1733bea220edee6d34, 58d997a3d68ea419147f80c066cbc8b23152f112)

Bug Fixes

• async generator function (8e65413b992d3f0d1d1ce5829a3493c81c06d147, a570c0025141e46e795a9adf9fb318b8cf21031e)
• class field (e1e35163970af44c320c88ab308ad1020526faac)
• for await...of loop (140e4e0da881e2e92fad217586711aeb2fe6c274)
• lexical declaration (be8ccc3ab5c34c4d4861e58bb1634d6dbc4a53f0)
• switch statement (6cdc035b2f7d03baaecf87d8a83ab10c964d79ea)

v3.17.2

Bug Fixes

• assignment operator (9efa02afb6de5f55d98b6f0d1369788012a29c34, 63b04a687aec5659532d8a89f4cd016558059a8e)
• if statement (9ac3879b06ddd26a56cc0298c1af1aac5a1fa022)
• return statement (37d3e4feaa1feae6a68dd6069484e464ae94a91b)
• ternary expression (43ec350cd2f714e6c19097e6386a27ba3de8e941)

v3.17.1

Features

• improve precision of escape analysis (d6d2f5ced2ce7f16eb02138ec243c01fe2b5717a, 10bc86ba107a17b3186d06938cb1b2bb45262e42)
• improve usability of --mangle-props (9eea3a673a0aceb277ab06e4d585d002af992dd6, 4653e8aec0f8db498556b7da89903b6ae3434f24, 5ac6ec5496af3d38b0d14ee1987d2bfc9e3085be)
• extend glob patterns for --in-situ (535212c69ef163c1cc35b7aa3d1fd625a171bb0e)
• support Adobe ExtendScipt on best-effort basis (32bd65a87fd8a828150eccb57024adc60b468b05)
• inline immediately invoked arrow function expressions (9dec612cd5c167eeac9ed68f9f2832bae7260196)
• improve elimination of lexical declarations (edf1bf110635e604973d626e7ac45b6086e4b9fc)

... (truncated)

Commits

• See full diff in compare view

Maintainer changes

This version was pushed to npm by alexlamsl, a new releaser for uglify-js since your current version.

Updates grunt-contrib-uglify from 0.2.7 to 5.2.2

Release notes

Sourced from grunt-contrib-uglify's releases.

v5.2.2

• Set dev version for publish df82903
• update dependencies (#572) 70b6eb7
• Bump ejs from 3.1.6 to 3.1.8 (#570) a285b24
• Bump grunt from 1.5.2 to 1.5.3 (#569) 4415d58
• Update README.md efdabc7

https://github.com/gruntjs/grunt-contrib-uglify/compare/v5.2.1...v5.2.2

v5.2.1

• Update Readme 3c8d904
• update dependencies (#568) 0850dcd
• Bump minimist from 1.2.5 to 1.2.6 (#567) c27ad5f
• Fix documentation in relation to issue #565 (#566) 98b4c5f
• Bump minimist from 1.2.5 to 1.2.6 (#563) 7228446

https://github.com/gruntjs/grunt-contrib-uglify/compare/v5.1.0...v5.2.1

v5.1.0

• Update deps, v5.1.0 (#564) e410511
• Update uglify-js to v3.15.2 (#562) 2cb31be
• Fix wording in README.md (#560) 12ca0f2
• Bump path-parse from 1.0.6 to 1.0.7 (#558) 1f6a012
• Update uglify-js (#557) 0e4b1a0
• Bump hosted-git-info from 2.8.8 to 2.8.9 (#556) 9ccf10d

https://github.com/gruntjs/grunt-contrib-uglify/compare/v5.0.1...v5.1.0

v5.0.1

• Update uglify-js to v3.13.3.

v4.0.1

• Update uglify-js to v3.5.0.
• Update dependencies.

v4.0.0

• Updated all dependencies.
• Requires Node.js >= 6.

v3.4.0

No release notes provided.

v3.3.0

No release notes provided.

v3.2.1

No release notes provided.

v3.2.0

... (truncated)

Changelog

Sourced from grunt-contrib-uglify's changelog.

v5.1.0: date: 2022-03-27 changes: - Update dependencies. uglify-js ^3.15.2. - Requires node 12+. v5.0.0: date: 2020-07-16 changes: - Requires node 10+. - Update dependencies. v4.0.1: date: 2019-03-21 changes: - Update uglify-js to v3.5.0. - Update dependencies. v4.0.0: date: 2018-08-26 changes: - Update dependencies. - Requires Node.js >= 6. v3.4.0: date: 2018-07-29 changes: - Update uglify-js to v3.4.0. v3.3.0: date: 2017-12-24 changes: - Update uglify-js to v3.3.0. v3.2.1: date: 2017-11-26 changes: - Update uglify-js to v3.2.0. v3.1.0: date: 2017-09-11 changes: - Update uglify-js to v3.1.0. v3.0.1: date: 2017-05-20 changes: - Fix toplevel option. v3.0.0: date: 2017-05-12 changes: - Update uglify-js to v3.0.4. v2.3.0: date: 2017-04-05 changes: - Make CLI output less verbose. v2.2.1: date: 2017-03-31

... (truncated)

Commits

• See full diff in compare view

Maintainer changes

This version was pushed to npm by vladikoff, a new releaser for grunt-contrib-uglify since your current version.

Updates karma from 0.10.10 to 6.4.1

Release notes

Sourced from karma's releases.

v6.4.1

6.4.1 (2022-09-19)

Bug Fixes

• pass integrity value (63d86be)

v6.4.0

6.4.0 (2022-06-14)

Features

• support SRI verification of link tags (dc51a2e)
• support SRI verification of script tags (6a54b1c)

v6.3.20

6.3.20 (2022-05-13)

Bug Fixes

• prefer IPv4 addresses when resolving domains (e17698f), closes #3730

v6.3.19

6.3.19 (2022-04-19)

Bug Fixes

• client: error out when opening a new tab fails (099b85e)

v6.3.18

6.3.18 (2022-04-13)

Bug Fixes

• deps: upgrade socket.io to v4.4.1 (52a30bb)

v6.3.17

6.3.17 (2022-02-28)

Bug Fixes

• deps: update colors to maintained version (#3763) (fca1884)

v6.3.16

... (truncated)

Changelog

Sourced from karma's changelog.

6.4.1 (2022-09-19)

Bug Fixes

• pass integrity value (63d86be)

6.4.0 (2022-06-14)

Features

• support SRI verification of link tags (dc51a2e)
• support SRI verification of script tags (6a54b1c)

6.3.20 (2022-05-13)

Bug Fixes

• prefer IPv4 addresses when resolving domains (e17698f), closes #3730

6.3.19 (2022-04-19)

Bug Fixes

• client: error out when opening a new tab fails (099b85e)

6.3.18 (2022-04-13)

Bug Fixes

• deps: upgrade socket.io to v4.4.1 (52a30bb)

6.3.17 (2022-02-28)

Bug Fixes

• deps: update colors to maintained version (#3763) (fca1884)

6.3.16 (2022-02-10)

Bug Fixes

• security: mitigate the "Open Redirect Vulnerability" (ff7edbb)

... (truncated)

Commits

• 0013121 chore(release): 6.4.1 [skip ci]
• 63d86be fix: pass integrity value
• 84f7cc3 chore(release): 6.4.0 [skip ci]
• f2d0663 docs: add integrity parameter
• dc51a2e feat: support SRI verification of link tags
• 6a54b1c feat: support SRI verification of script tags
• 5e71cf5 chore(release): 6.3.20 [skip ci]
• e17698f fix: prefer IPv4 addresses when resolving domains
• 60f4f79 build: add Node 16 and 18 to the CI matrix
• 6ff5aaf chore(release): 6.3.19 [skip ci]
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by karmarunnerbot, a new releaser for karma since your current version.

Updates karma-coverage from 0.1.5 to 2.2.0

Release notes

Sourced from karma-coverage's releases.

v2.2.0

2.2.0 (2022-02-10)

Features

• update Istanbul packages (24aac11)

v2.1.1

2.1.1 (2022-02-05)

Bug Fixes

• handle unexpected error when generating code coverage (bca2c69), closes /github.com/karma-runner/karma/blob/c985155a4eac95c525e1217e98d4013ac5f53305/lib/server.js#L392
• race condition between the Karma shutdown and coverage writing (44b31eb), closes #434

v2.1.0

2.1.0 (2021-12-01)

Bug Fixes

• deps: update main and dev dependencies (c20d982)

Features

• reporter: log coverage threshold as a warning fixed #432 (a6c95d8)

v2.0.3

2.0.3 (2020-07-24)

Bug Fixes

• report: waiting promise resolve in onExist method fix #418 (c93f061)

v2.0.2

2.0.2 (2020-04-13)

Bug Fixes

• reporter: update calls to match new API in istanbul-lib-report fix #398 (#403) (4962a70)
• remove information about old istanbul lib (#404) (5cf931a)

v2.0.1

No release notes provided.

... (truncated)

Changelog

Sourced from karma-coverage's changelog.

2.2.0 (2022-02-10)

Features

• update Istanbul packages (24aac11)

2.1.1 (2022-02-05)

Bug Fixes

• handle unexpected error when generating code coverage (bca2c69), closes /github.com/karma-runner/karma/blob/c985155a4eac95c525e1217e98d4013ac5f53305/lib/server.js#L392
• race condition between the Karma shutdown and coverage writing (44b31eb), closes #434

2.1.0 (2021-12-01)

Bug Fixes

• deps: update main and dev dependencies (c20d982)

Features

• reporter: log coverage threshold as a warning fixed #432 (a6c95d8)

2.0.3 (2020-07-24)

Bug Fixes

• report: waiting promise resolve in onExist method fix #418 (c93f061)

2.0.2 (2020-04-13)

Bug Fixes

• reporter: update calls to match new API in istanbul-lib-report fix #398 (#403) (4962a70)
• remove information about old istanbul lib (#404) (5cf931a)

2.0.1 (2019-08-20)

2.0.0 (2019-08-20)

... (truncated)

Commits

• 06fb9ad chore(release): 2.2.0 [skip ci]
• 24aac11 feat: update Istanbul packages
• 9e8492c chore(deps): bump follow-redirects from 1.14.5 to 1.14.7
• 68daaa7 chore(deps): bump node-fetch from 2.6.6 to 2.6.7
• 2675374 chore(release): 2.1.1 [skip ci]
• bca2c69 fix: handle unexpected error when generating code coverage
• 44b31eb fix: race condition between the Karma shutdown and coverage writing
• 4adb3ef chore(deps): update indirect deps
• 6484d9a chore(deps): bump handlebars from 4.7.3 to 4.7.7
• 0069b99 chore(deps): bump ini from 1.3.5 to 1.3.8
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by karmarunnerbot, a new releaser for karma-coverage since your current version.

Updates grunt-karma-coveralls from 2.0.2 to 2.5.4

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/winmarkltd/BootstrapFormHelpers/network/alerts).