Bump minimatch, babelify, babel, babel-core, babel-loader, browserify and gulp

[dependabot]

Bumps minimatch to 3.1.2 and updates ancestor dependencies minimatch, babelify, babel, babel-core, babel-loader, browserify and gulp. These dependencies need to be updated together.

Updates minimatch from 0.2.14 to 3.1.2

Commits

• 699c459 3.1.2
• 2f2b5ff fix: trim pattern
• 25d7c0d 3.1.1
• 55dda29 fix: treat nocase:true as always having magic
• 5e1fb8d 3.1.0
• f8145c5 Add 'allowWindowsEscape' option
• 570e8b1 add publishConfig for v3 publishes
• 5b7cd33 3.0.6
• 20b4b56 [fix] revert all breaking syntax changes
• 2ff0388 document, expose, and test 'partial:true' option
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by isaacs, a new releaser for minimatch since your current version.

Updates babelify from 6.4.0 to 10.0.0

Release notes

Sourced from babelify's releases.

v10.0.0

No changes from v10.0.0-beta.1, just re-releasing as stable.

v10.0.0-beta.1

• Revert one change to sources in generated sourcemaps that landed between 9.0.0 and 10.0.0-beta.0 since it was not needed.

v10.0.0-beta.0

• #267 - Fix handling for ignoreed files from Babel
• #262 - Fix README examples that were wrong
• #273 - More updates for Babel 7.x
• A bunch more fixes to make things work well

v9.0.0

• #255 - Initial upgrade to Babel 7.x
• #264 - Use Browserify's basedir as the working directory Babel's config.

This is marked as a prerelease because it was never published as latest on npm.

v8.0.0

• Drop Node 0.10/0.12/5 (similar to everything else in Babel 7)
• Add a peerDep on babel-core (similar to how babel-loader works), this is because people end up using incompatible versions of plugins/presets/tools (especially as we make a new major)

https://github.com/babel/grunt-babel/releases/tag/v7.0.0 https://github.com/babel/gulp-babel/releases/tag/v7.0.0

babel/babelify@02f97ec

Commits

• 14e6295 10.0.0
• 93d205d 10.0.0-beta.1
• 53707d2 Browserify handles file-relative maps fine, so using Babel's default is fine.
• 947752b 10.0.0-beta.0
• 201652e Fix copy-paste fail
• 31ecb43 Run babelify in strict mode.
• 748faa1 Consider the stream class an implementation detail, but allow instanceof checks.
• 9b2cbd0 Respect sourceMaps:false set in config files too.
• 588bde8 Standardize sourcemap basedir processing to get relative paths.
• 9c2f6bb Pass correct data property through.
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by loganfsmyth, a new releaser for babelify since your current version.

Updates babel from 5.8.38 to 6.23.0

Changelog

Sourced from babel's changelog.

6.23.0 (2017-02-13)

🚀 New Feature

• babel-plugin-transform-react-constant-elements
  • #4812 feature: Support pure expressions in transform-react-constant-elements. (@​STRML)
• babel-preset-flow, babel-preset-react
  • #5288 Add new flow preset. (@​thejameskyle)
• babel-traverse
  • #5230 Add path/family sibling traversal methods. (@​chitchu)
• babel-plugin-transform-es2015-block-scoping
  • #5236 Add option to block-scoping to throw on slow code. (@​spicyj)

🐛 Bug Fix

• babel-core, babel-traverse
  • #5050 Rewrite Hub as interface #5047. (@​yongxu)
• babel-plugin-transform-es2015-for-of
  • #5298 Fix loose for-of with label. (@​jridgewell)
• babel-plugin-transform-react-constant-elements, babel-traverse
  • #5153 Fix react constant elements bindings. (@​STRML)
  • #5143 Fix PathHoister hoisting JSX member expressions on "this".. (@​STRML)
• babel-plugin-transform-do-expressions, babel-traverse
  • #5030 Prevent multiple return statements in a loop when replacing expressions. (@​existentialism)
• babel-register
  • #5260 Fix TypeError with babel-register's cache. (@​xtuc)
• babel-traverse
  • #5206 Deopt evaluation of undefined with a local binding. Closes #5204. (@​boopathi)
• babel-plugin-transform-runtime
  • #5195 Don't transpile ES7 symbol properties. (@​taion)
• babel
  • #5258 checks if babel is installed globally and displays correct cli message. (@​xtina-starr)
• babel-generator
  • #5270 Emit parens for await of ternary expressions. (@​erikdesjardins)
  • #5193 Fix missing parens when function expressions is tag. (@​existentialism)
• babel-plugin-transform-es2015-modules-commonjs
  • #5235 Limit export node default assignment stack size #4323. (@​mattste)

📝 Documentation

• babel-*
  • #5244 Normalize options sections in docs [skip ci]. (@​existentialism)
  • #5216 Remove link to REPL. (@​xtuc)
• Other
  • #5242 Add our business model [skip ci]. (@​hzoo)
• babel-plugin-transform-es2015-spread
  • #5227 Add example to spread README [skip ci]. (@​finkef)
• babel-plugin-transform-flow-strip-types
  • #5212 Remove REPL link transform-flow-strip-types doc. (@​xtuc)
• babel-plugin-transform-regenerator
  • #5202 Fix transform-regenerator README. (@​xtuc)
• babel-plugin-transform-es2015-arrow-functions
  • #5200 Fix transform-es2015-arrow-functions code blocks on the website. (@​xtuc)

... (truncated)

Commits

• 48573f1 v6.23.0
• 24400c5 Update babel-types README from script.
• cc5750d Add CHANGELOG for 6.23.0 [skip ci] (#5304)
• e1fee21 Add charset so tests work with convert-source-map@>1.4 (#5302)
• 1c1e9c7 Revert "Upgrade lerna to current beta." (#5303)
• 8a28c07 Upgrade lerna to current beta. (#5300)
• 6522a25 Add greenkeeperio-bot to mention-bot blacklist (#5301) [skip ci]
• 14d3c2e Avoid adding unnecessary closure for block scoping (#5246)
• 2985597 Rewrite Hub as interface #5047 (#5050)
• ca45904 Fix loose for-of with label (#5298)
• Additional commits viewable in compare view

Updates babel-core from 5.8.38 to 6.26.3

Commits

• d8be710 v6.26.3
• a8ddf5e Only convert input mappings if we get mappings from Babel
• 280cfed v6.26.2
• 6fa027e Merge pull request #7812 from loganfsmyth/backported-sourcemap-changes
• c8b4c28 Implement minNodeVersion for babel-cli tests too.
• 753c2af Disable 2 tests on Node 0.10
• ae43e06 Backport minNodeVersion test option from #5765 for 6.x
• e72cf66 Fix Babel 6 builds on Node 0.10
• 80f433a Backport #7761 for 6.x
• 7360a30 Backport #7312 for 6.x
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by loganfsmyth, a new releaser for babel-core since your current version.

Updates babel-loader from 5.4.2 to 9.0.1

Release notes

Sourced from babel-loader's releases.

v9.0.1

Bug Fixes

• remove "node:" builtin prefix by @​JLHwung in babel/babel-loader#970

Full Changelog: babel/babel-loader@v9.0.0...v9.0.1

v9.0.0

What's Changed

• update hash method mechanism so it doesn't fail on a fips enabled machine by @​darmbrust in babel/babel-loader#939
• Require babel ^7.12.0 and Node.js >= 14.15.0 versions by @​JLHwung in babel/babel-loader#956
• Remove dependency on loader-utils and drop webpack 4 support by @​nied in babel/babel-loader#942

New Contributors

• @​darmbrust made their first contribution in babel/babel-loader#939
• @​nied made their first contribution in babel/babel-loader#942

Full Changelog: babel/babel-loader@v8.2.5...v9.0.0

v8.2.5

What's Changed

• fix: respect inputSourceMap loader option by @​alan-agius4 in babel/babel-loader#896

New Contributors

• @​alan-agius4 made their first contribution in babel/babel-loader#896

Full Changelog: babel/babel-loader@v8.2.4...v8.2.5

v8.2.4

What's Changed

• doc(README.md): fix a broken markdown link by @​loveDstyle in babel/babel-loader#919
• Bump loader-utils to 2.x by @​stianjensen in babel/babel-loader#931
• Use md5 hashing for OpenSSL 3 by @​pathmapper in babel/babel-loader#924

Thanks @​loveDstyle, @​stianjensen and @​pathmapper for your first PRs!

8.2.3

This release fixes compatibility with Node.js 17

• Use md5 hash for caching on node v17 (babel/babel-loader#918)

Thanks @​Reptarsrage!

8.2.1

• Move @ava/babel to devDependencies #881 (@​jvasseur)

8.2.0

• Replace mkdirp with make-dir 47958ca3857e489e450b27c6f3266375015cba82 (@​JLHwung)
• Use async config loading when available d8cff97ff387ded0fc9b5cbc489228c96c5ab14a (@​the-spyke)

... (truncated)

Changelog

Sourced from babel-loader's changelog.

Changelog

For changes in version v7.0.0 and up please go to release

Old Changelog

v6.4.1

🐛 Bug Fix

• Fixed reset of BABEL_ENV when options.forceEnv is used (#420) @​nikopavlica

v6.4.0

🚀 New Feature

• added metadata passing from babel to webpack, which is currently used by react-intl (#398) @​Ognian

v6.3.2

😢 Regression

• forceEnv was interfering with regular environment handling

v6.3.1

🐛 Bug Fix

• The new forceEnv options wasn't working as expected (#379) @​chrisvasz

v6.3.0

🚀 New Feature

• Add new config option forceEnv (#368) @​moimael

Allow to override BABEL_ENV/NODE_ENV at loader-level. Useful for isomorphic applications which have separate babel config for client and server.

🐛 Bug Fix

• Update loader-utils dependency to ^0.2.16 to fix compatibility with webpack 2 (#371) @​leonaves

💅 Polish

• Improve FS caching to do less sync calls which improves performance slightly (#375) @​akx

v6.2.10

Support for webpack 2.2-rc has been added in this release

... (truncated)

Commits

• f42ac9b 9.0.1
• 4f9c0bf remove "node:" builtin prefix (#970)
• 9ff288f 9.0.0
• 006a3dc Update README.md
• daed88a Update README.md
• 0ed5fd6 Bump ini from 1.3.5 to 1.3.8 (#968)
• b1749e3 Bump y18n from 4.0.0 to 4.0.3 (#967)
• 3a55a4a Bump lodash from 4.17.20 to 4.17.21 (#966)
• 9a4ffe0 Bump normalize-url from 4.5.0 to 4.5.1 (#962)
• 28f2482 Bump hosted-git-info from 2.8.8 to 2.8.9 (#964)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by nicolo-ribaudo, a new releaser for babel-loader since your current version.

Updates browserify from 11.2.0 to 17.0.0

Release notes

Sourced from browserify's releases.

v17.0.0

• Upgrade events to v3.x. EventEmitter instances now have an off() method. require('events').once can be used to react to an event being emitted with async/await syntax. (#1839)
• Upgrade path-browserify to v1.x. (#1838)
• Upgrade stream-browserify to v3.x. require('stream') now matches the Node.js 10+ API. (#1970)
• Upgrade util to v0.12. Most notably, util.promisify and util.callbackify are finally available by default in browserify. (#1844)
• Add JSON syntax checking. Syntax errors in .json files will now fail to bundle. (#1700)

v16.5.1

Remove deprecated mkdirp version in favour of mkdirp-classic.

browserify/browserify@00c913f

Pin dependencies for Node.js 0.8 support.

browserify/browserify#1939

v16.5.0

Support custom name for "browser" field resolution in package.json using the browserField option.

browserify/browserify#1918

v16.4.0

Upgrade stream-http to v3. This version drops support for IE10 and below.

browserify/browserify#1916

v16.3.0

add empty stub for the http2 builtin module.

browserify/browserify#1913

update license text to remove references to code that is no longer included.

browserify/browserify#1906

add more tests for folder resolution.

browserify/browserify#1139

v16.2.3

add empty stub for the inspector builtin module.

browserify/browserify#1854

change the "browser" field link to the browser-field-spec repo instead of the old gist.

... (truncated)

Changelog

Sourced from browserify's changelog.

17.0.0

• Upgrade events to v3.x. EventEmitter instances now have an off() method. require('events').once can be used to react to an event being emitted with async/await syntax. (#1839)
• Upgrade path-browserify to v1.x. (#1838)
• Upgrade stream-browserify to v3.x. require('stream') now matches the Node.js 10+ API. (#1970)
• Upgrade util to v0.12. Most notably, util.promisify and util.callbackify are finally available by default in browserify. (#1844)
• Add JSON syntax checking. Syntax errors in .json files will now fail to bundle. (#1700)

16.5.2

Upgrade browser-resolve to v2.

browserify/browserify#1973

16.5.1

Remove deprecated mkdirp version in favour of mkdirp-classic.

browserify/browserify@00c913f

Pin dependencies for Node.js 0.8 support.

browserify/browserify#1939

16.5.0

Support custom name for "browser" field resolution in package.json using the browserField option.

browserify/browserify#1918

16.4.0

Upgrade stream-http to v3. This version drops support for IE10 and below.

browserify/browserify#1916

16.3.0

add empty stub for the http2 builtin module.

browserify/browserify#1913

update license text to remove references to code that is no longer included.

browserify/browserify#1906

add more tests for folder resolution.

browserify/browserify#1139

16.2.3

... (truncated)

Commits

• 7b14fb1 17.0.0
• c1523e2 Merge pull request #1970 from browserify/streams3
• 26665c0 bump readable-stream
• 984ffc6 Merge pull request #1982 from browserify/fix-ci
• e34ed8c skip crypto tests in old node.js
• 190491a update min insert-module-globals version
• 5113ea3 Merge tag 'v16.5.2' into master
• c94b4d5 16.5.2
• 678d650 Merge pull request #1973 from browserify/browser-resolve-2
• fc324b5 update browser-resolve to v2
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by goto-bus-stop, a new releaser for browserify since your current version.

Updates gulp from 3.9.1 to 4.0.2

Release notes

Sourced from gulp's releases.

v4.0.2

Fix

• Bind src/dest/symlink to the gulp instance to support esm exports (5667666) - Ref standard-things/esm#797

Docs

• Add notes about esm support (4091bd3) - Closes #2278
• Fix the Negative Globs section & examples (3c66d95) - Closes #2297
• Remove next tag from recipes (1693a11) - Closes #2277
• Add default task wrappers to Watching Files examples to make runnable (d916276) - Closes #2322
• Fix syntax error in lastRun API docs (ea52a92) - Closes #2315
• Fix typo in Explaining Globs (5d81f42) - Closes #2326

Build

• Add node 12 to Travis & Azure (b4b5a68)

v4.0.1

Fix

• Temporary workaround for facebook/Docusaurus#257 (9f4a2e9) - Closes facebook/Docusaurus#257

Docs

• Fix error in ES2015 usage example (a4e8d48) - Closes #2099 #2100
• Add temporary notice for 4.0.0 vs 3.9.1 documentation (126423a) - Closes #2121
• Improve recipe for empty glob array (45830cf) - Closes #2122
• Reword standard to default (b065a13)
• Fix recipe typo (86acdea) - Closes #2156
• Add front-matter to each file (d693e49) - Closes #2109
• Rename "Getting Started" to "Quick Start" & update it (6a0fa00)
• Add "Creating Tasks" documentation (21b6962)
• Add "JavaScript and Gulpfiles" documentation (31adf07)
• Add "Working with Files" documentation (50fafc6)
• Add "Async Completion" documentation (ad8b568)
• Add "Explaining Globs" documentation (f8cafa0)
• Add "Using Plugins" documentation (233c3f9)
• Add "Watching Files" documentation (f3f2d9f)
• Add Table of Contents to "Getting Started" directory (a43caf2)
• Improve & fix parts of Getting Started (84b0234)
• Create and link-to a "docs missing" page for LINK_NEEDED references (2bd75d0)
• Redirect users to new Getting Started guides (53e9727)
• Temporarily reference gulp@next in Quick Start (2cecf1e)
• Fixed a capitalization typo in a heading (3d051d8) - Closes #2242
• Use h2 headers within Quick Start documentation (921312c) - Closes #2241
• Fix for nested directories references (4c2b9a7)
• Add some more cleanup for Docusaurus (6a8fd8f)
• Temporarily point LINK_NEEDED references to documentation-missing.md (df7cdcb)
• API documentation improvements based on feedback (0a68710)

... (truncated)

Changelog

Sourced from gulp's changelog.

gulp changelog

4.0.0

Task system changes

• replaced 3.x task system (orchestrator) with new task system (bach)
  • removed gulp.reset
  • removed 3 argument syntax for gulp.task
  • gulp.task should only be used when you will call the task with the CLI
  • added gulp.series and gulp.parallel methods for composing tasks. Everything must use these now.
  • added single argument syntax for gulp.task which allows a named function to be used as the name of the task and task function.
  • added gulp.tree method for retrieving the task tree. Pass { deep: true } for an archy compatible node list.
  • added gulp.registry for setting custom registries.

CLI changes

• split CLI out into a module if you want to save bandwidth/disk space. you can install the gulp CLI using either npm install gulp -g or npm install gulp-cli -g, where gulp-cli is the smaller one (no module code included)
• add --tasks-json flag to CLI to dump the whole tree out for other tools to consume
• added --verify flag to check the dependencies in package.json against the plugin blacklist.

vinyl/vinyl-fs changes

• added gulp.symlink which functions exactly like gulp.dest, but symlinks instead.
• added dirMode param to gulp.dest and gulp.symlink which allows better control over the mode of the destination folder that is created.
• globs passed to gulp.src will be evaluated in order, which means this is possible gulp.src(['*.js', '!b*.js', 'bad.js']) (exclude every JS file that starts with a b except bad.js)
• performance for gulp.src has improved massively
  • gulp.src(['**/*', '!b.js']) will no longer eat CPU since negations happen during walking now
• added since option to gulp.src which lets you only match files that have been modified since a certain date (for incremental builds)
• fixed gulp.src not following symlinks
• added overwrite option to gulp.dest which allows you to enable or disable overwriting of existing files

Commits

• 069350a Release: 4.0.2
• b4b5a68 Build: Add node 12 to Travis & Azure
• 5667666 Fix: Bind src/dest/symlink to the gulp instance to support esm exports (ref s...
• 4091bd3 Docs: Add notes about esm support (closes #2278)
• 3c66d95 Docs: Fix the Negative Globs section & examples (closes #2297)
• 1693a11 Docs: Remove next tag from recipes (closes #2277)
• d916276 Docs: Add default task wrappers to Watching Files examples to make runnable (...
• ea52a92 Docs: Fix syntax error in lastRun API docs (closes #2315)
• 5d81f42 Docs: Fix typo in Explaining Globs (#2326)
• ea3bba4 Release: 4.0.1
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.