Bump minimatch, gulp, gulp-htmlhint, gulp-jshint, gulp-load-plugins, gulp-nodemon, gulp-order, karma, multimatch and protractor

[dependabot]

Bumps minimatch to 3.0.4 and updates ancestor dependencies minimatch, gulp, gulp-htmlhint, gulp-jshint, gulp-load-plugins, gulp-nodemon, gulp-order, karma, multimatch and protractor. These dependencies need to be updated together.

Updates minimatch from 0.2.14 to 3.0.4

Commits

• e46989a v3.0.4
• ddfacbd update brace-expansion
• 55ed736 update package scripts and deps
• eed8949 v3.0.3
• ecabc57 Do not throw on unfinished !( extglob patterns
• 81edb7c v3.0.2
• 6944abf Handle extremely long and terrible patterns more gracefully
• 8ac560e v3.0.1
• 4f3a8bc update tap
• 9cf2d88 Remove mentions of cache from readme
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by isaacs, a new releaser for minimatch since your current version.

Updates gulp from 3.9.1 to 4.0.2

Release notes

Sourced from gulp's releases.

v4.0.2

Fix

• Bind src/dest/symlink to the gulp instance to support esm exports (5667666) - Ref standard-things/esm#797

Docs

• Add notes about esm support (4091bd3) - Closes #2278
• Fix the Negative Globs section & examples (3c66d95) - Closes #2297
• Remove next tag from recipes (1693a11) - Closes #2277
• Add default task wrappers to Watching Files examples to make runnable (d916276) - Closes #2322
• Fix syntax error in lastRun API docs (ea52a92) - Closes #2315
• Fix typo in Explaining Globs (5d81f42) - Closes #2326

Build

• Add node 12 to Travis & Azure (b4b5a68)

v4.0.1

Fix

• Temporary workaround for facebook/Docusaurus#257 (9f4a2e9) - Closes facebook/Docusaurus#257

Docs

• Fix error in ES2015 usage example (a4e8d48) - Closes #2099 #2100
• Add temporary notice for 4.0.0 vs 3.9.1 documentation (126423a) - Closes #2121
• Improve recipe for empty glob array (45830cf) - Closes #2122
• Reword standard to default (b065a13)
• Fix recipe typo (86acdea) - Closes #2156
• Add front-matter to each file (d693e49) - Closes #2109
• Rename "Getting Started" to "Quick Start" & update it (6a0fa00)
• Add "Creating Tasks" documentation (21b6962)
• Add "JavaScript and Gulpfiles" documentation (31adf07)
• Add "Working with Files" documentation (50fafc6)
• Add "Async Completion" documentation (ad8b568)
• Add "Explaining Globs" documentation (f8cafa0)
• Add "Using Plugins" documentation (233c3f9)
• Add "Watching Files" documentation (f3f2d9f)
• Add Table of Contents to "Getting Started" directory (a43caf2)
• Improve & fix parts of Getting Started (84b0234)
• Create and link-to a "docs missing" page for LINK_NEEDED references (2bd75d0)
• Redirect users to new Getting Started guides (53e9727)
• Temporarily reference gulp@next in Quick Start (2cecf1e)
• Fixed a capitalization typo in a heading (3d051d8) - Closes #2242
• Use h2 headers within Quick Start documentation (921312c) - Closes #2241
• Fix for nested directories references (4c2b9a7)
• Add some more cleanup for Docusaurus (6a8fd8f)
• Temporarily point LINK_NEEDED references to documentation-missing.md (df7cdcb)
• API documentation improvements based on feedback (0a68710)

... (truncated)

Changelog

Sourced from gulp's changelog.

gulp changelog

4.0.0

Task system changes

• replaced 3.x task system (orchestrator) with new task system (bach)
  • removed gulp.reset
  • removed 3 argument syntax for gulp.task
  • gulp.task should only be used when you will call the task with the CLI
  • added gulp.series and gulp.parallel methods for composing tasks. Everything must use these now.
  • added single argument syntax for gulp.task which allows a named function to be used as the name of the task and task function.
  • added gulp.tree method for retrieving the task tree. Pass { deep: true } for an archy compatible node list.
  • added gulp.registry for setting custom registries.

CLI changes

• split CLI out into a module if you want to save bandwidth/disk space. you can install the gulp CLI using either npm install gulp -g or npm install gulp-cli -g, where gulp-cli is the smaller one (no module code included)
• add --tasks-json flag to CLI to dump the whole tree out for other tools to consume
• added --verify flag to check the dependencies in package.json against the plugin blacklist.

vinyl/vinyl-fs changes

• added gulp.symlink which functions exactly like gulp.dest, but symlinks instead.
• added dirMode param to gulp.dest and gulp.symlink which allows better control over the mode of the destination folder that is created.
• globs passed to gulp.src will be evaluated in order, which means this is possible gulp.src(['*.js', '!b*.js', 'bad.js']) (exclude every JS file that starts with a b except bad.js)
• performance for gulp.src has improved massively
  • gulp.src(['**/*', '!b.js']) will no longer eat CPU since negations happen during walking now
• added since option to gulp.src which lets you only match files that have been modified since a certain date (for incremental builds)
• fixed gulp.src not following symlinks
• added overwrite option to gulp.dest which allows you to enable or disable overwriting of existing files

Commits

• 069350a Release: 4.0.2
• b4b5a68 Build: Add node 12 to Travis & Azure
• 5667666 Fix: Bind src/dest/symlink to the gulp instance to support esm exports (ref s...
• 4091bd3 Docs: Add notes about esm support (closes #2278)
• 3c66d95 Docs: Fix the Negative Globs section & examples (closes #2297)
• 1693a11 Docs: Remove next tag from recipes (closes #2277)
• d916276 Docs: Add default task wrappers to Watching Files examples to make runnable (...
• ea52a92 Docs: Fix syntax error in lastRun API docs (closes #2315)
• 5d81f42 Docs: Fix typo in Explaining Globs (#2326)
• ea3bba4 Release: 4.0.1
• Additional commits viewable in compare view

Updates gulp-htmlhint from 0.0.9 to 4.0.2

Release notes

Sourced from gulp-htmlhint's releases.

v4.0.2

• Update test.yml b110f1d
• Switch to github actions aae25ee
• Create test.yml 6b45842
• Bump htmlhint & add htmlhint as peerDependency 5315942
• Bump path-parse from 1.0.6 to 1.0.7 (#66) a95c3d2
• Bump normalize-url from 4.5.0 to 4.5.1 (#65) 9e08834
• Bump trim-newlines from 3.0.0 to 3.0.1 (#64) 68ad4a3
• Bump hosted-git-info from 2.8.5 to 2.8.9 (#63) 8e32c25

bezoerb/gulp-htmlhint@v4.0.1...v4.0.2

v4.0.1

• Bump dependencies 2d1a389
• Bump lodash from 4.17.20 to 4.17.21 (#62) 946d4b3
• fix .htmlhintrc file path (#61) a5b1de7
• Bump y18n from 4.0.0 to 4.0.1 (#60) 13d0dbe
• Bump elliptic from 6.5.3 to 6.5.4 (#59) cd57759

bezoerb/gulp-htmlhint@v4.0.0...v4.0.1

v4.0.0

• Drops node 8 support d3abbde
• Adds node 14 to test matrix 6a8609f
• Bump dependencies e2739de
• Bump dot-prop from 4.2.0 to 4.2.1 (#57) da2c5a9
• Bump lodash from 4.17.15 to 4.17.20 (#58) aa245ec
• Bump ini from 1.3.5 to 1.3.8 (#56) 4fec526

bezoerb/gulp-htmlhint@v3.0.1...v4.0.0

v3.0.1

• Bump dependencies cce0401
• Bump acorn from 7.1.0 to 7.1.1 (#55) cf5ac06

bezoerb/gulp-htmlhint@v3.0.0...v3.0.1

v3.0.0

• Bump dependencies & drop node 8 support 722b0ea
• Bump handlebars from 4.0.12 to 4.5.1 (#52) a72ad73
• Bump lodash.mergewith from 4.6.1 to 4.6.2 (#53) 4ce157b
• Bump sshpk from 1.13.1 to 1.16.1 (#48) a182bd7
• Bump js-yaml from 3.12.0 to 3.13.1 (#47) 030041c
• Bump eslint-utils from 1.3.1 to 1.4.3 (#46) ce1a109
• Bump extend from 3.0.1 to 3.0.2 (#45) 1d02e7c
• Bump mixin-deep from 1.3.1 to 1.3.2 (#49) 6dfa1c8
• Bump hoek from 4.2.0 to 4.2.1 (#50) 485f5f0
• Bump esm from 3.0.82 to 3.2.25 (#51) 6623190
• Grammar, style, and code fixes to README (#44) 8788f14
• Merge pull request #43 from coliff/patch-1 6f32fa4

... (truncated)

Changelog

Sourced from gulp-htmlhint's changelog.

v2.2.1 / 2018-09-10

• Bump dependencies
• Updated htmlhint dependency (#42)

v2.1.1 / 2018-04-06

• Fix issue in specifying htmlhintrc in options. #39

v2.1.0 / 2018-02-09

• Add support for custom rules

2.0.0 / 2018-01-23

• Drop node <6 support

1.0.0 / 2017-10-26

• Drop node <4 support
• feat(reporters): failAfterError and failOnError (#32)
• Add link for gulp-reporter (#30)
• Merge pull request #26 from Titiaiev/patch-1
• Update README.md
• Merge pull request #19 from appfeel/master
• Allow reporter to get options

0.3.0 / 2015-07-18

• Merge pull request #15 from doshprompt/require-reporter
• Merge pull request #16 from doshprompt/fail-reporter
• feat(failReporter): use suppress=true instead of errors=false
• Update README.md
• chore(README): more details on failReporter
• feat(failReporter): add ability to turn off file errors on failure
• test(reporter): load custom reporter by package name
• feat(reporter): custom reporter can be loaded by its package name

0.2.1 / 2015-07-17

• feat(htmlhintrc): allow comments similar to jshintrc

Commits

• 5c1fa82 4.0.2
• b110f1d Update test.yml
• aae25ee Switch to github actions
• 6b45842 Create test.yml
• 5315942 Bump htmlhint & add htmlhint as peerDependency
• a95c3d2 Bump path-parse from 1.0.6 to 1.0.7 (#66)
• 9e08834 Bump normalize-url from 4.5.0 to 4.5.1 (#65)
• 68ad4a3 Bump trim-newlines from 3.0.0 to 3.0.1 (#64)
• 8e32c25 Bump hosted-git-info from 2.8.5 to 2.8.9 (#63)
• 51c8c3f 4.0.1
• Additional commits viewable in compare view

Updates gulp-jshint from 1.12.0 to 2.1.0

Changelog

Sourced from gulp-jshint's changelog.

2.0

• jshint is now a peerDependency, meaning you must install it seperately

  npm install jshint gulp-jshint --save-dev

Commits

• 32a25b0 2.1.0
• 2c57c9f Merge pull request #157 from spalger/remove-gulp-util
• 5f621f8 vinyl is only used in testing
• 5eaabdd add yarn.lock file for dev
• 154180d [gulp-util/PluginError] use plugin-error directly
• 357ab98 [gulp-util/File] use Vinyl directly
• 807bead 2.0.4
• aca8740 Add test to verify that default files are not broken
• c277434 2.0.3
• 711f3f0 test fix
• Additional commits viewable in compare view

Updates gulp-load-plugins from 0.8.1 to 2.0.8

Release notes

Sourced from gulp-load-plugins's releases.

v2.0.8

• Fixes #141 - module.parent deprecated in Node 14+. Thanks @​DaveyJake
• Update dependencies

If you get the error Cannot read properties of undefined (reading 'filename'), this is because you're using a version of node where module.parent is undefined. To resolve, you need to add config to the plugin when instantiated with the path to your package.json file to read its dependencies. For example:

import gulpLoadPlugins from 'gulp-load-plugins';
const $ = gulpLoadPlugins({
config: process.env.npm_package_json
});

v2.0.7

Update dependencies

v2.0.6

Update dependencies and add power support for Travis on ppc64le - thanks @​dineshks1 - PR

v2.0.5

Updating dependencies

v2.0.4

Updating dependencies

v2.0.3

Updating dependencies

v2.0.2

No release notes provided.

Commits

• 44773ae Fixes #141 - module.parent deprecated in Node 14+
• 7d9d7e3 v2.0.7 - Updating dependencies
• 117eeee update changelog
• 1b0e333 version bump
• 58cdc59 updating dependencies. includes #140 Adds travis jobs on ppc64le
• 9854159 Merge pull request #140 from dineshks1/master
• 57d03f2 Adds travis jobs on ppc64le
• 549b585 v2.0.5 - updating deps
• 8fdff49 Add Node 14, remove Node 8 for CI
• d84b4d3 updating dependencies
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by jameelmoses, a new releaser for gulp-load-plugins since your current version.

Updates gulp-nodemon from 2.2.1 to 2.5.0

Commits

• See full diff in compare view

Maintainer changes

This version was pushed to npm by clmn, a new releaser for gulp-nodemon since your current version.

Updates gulp-order from 1.1.1 to 1.2.0

Commits

• 6b76d72 v1.2.0
• 03cd06e Update package info
• 5fadb80 Update dependencies
• 57f155e Replace deprecated Buffer call
• 6955c68 Merge pull request #30 from rejas/cleanups
• 939bc15 Update dependencies incl minimatch
• 79a6465 Update devDependencies, use coffeescript package
• 6e6bf65 Cleanup package json infos
• 10b90ae Replace deprecated gulp-util
• 9e9226f Merge pull request #27 from AndrewLeedham/master
• Additional commits viewable in compare view

Updates karma from 0.10.10 to 6.4.1

Release notes

Sourced from karma's releases.

v6.4.1

6.4.1 (2022-09-19)

Bug Fixes

• pass integrity value (63d86be)

v6.4.0

6.4.0 (2022-06-14)

Features

• support SRI verification of link tags (dc51a2e)
• support SRI verification of script tags (6a54b1c)

v6.3.20

6.3.20 (2022-05-13)

Bug Fixes

• prefer IPv4 addresses when resolving domains (e17698f), closes #3730

v6.3.19

6.3.19 (2022-04-19)

Bug Fixes

• client: error out when opening a new tab fails (099b85e)

v6.3.18

6.3.18 (2022-04-13)

Bug Fixes

• deps: upgrade socket.io to v4.4.1 (52a30bb)

v6.3.17

6.3.17 (2022-02-28)

Bug Fixes

• deps: update colors to maintained version (#3763) (fca1884)

v6.3.16

... (truncated)

Changelog

Sourced from karma's changelog.

6.4.1 (2022-09-19)

Bug Fixes

• pass integrity value (63d86be)

6.4.0 (2022-06-14)

Features

• support SRI verification of link tags (dc51a2e)
• support SRI verification of script tags (6a54b1c)

6.3.20 (2022-05-13)

Bug Fixes

• prefer IPv4 addresses when resolving domains (e17698f), closes #3730

6.3.19 (2022-04-19)

Bug Fixes

• client: error out when opening a new tab fails (099b85e)

6.3.18 (2022-04-13)

Bug Fixes

• deps: upgrade socket.io to v4.4.1 (52a30bb)

6.3.17 (2022-02-28)

Bug Fixes

• deps: update colors to maintained version (#3763) (fca1884)

6.3.16 (2022-02-10)

Bug Fixes

• security: mitigate the "Open Redirect Vulnerability" (ff7edbb)

... (truncated)

Commits

• 0013121 chore(release): 6.4.1 [skip ci]
• 63d86be fix: pass integrity value
• 84f7cc3 chore(release): 6.4.0 [skip ci]
• f2d0663 docs: add integrity parameter
• dc51a2e feat: support SRI verification of link tags
• 6a54b1c feat: support SRI verification of script tags
• 5e71cf5 chore(release): 6.3.20 [skip ci]
• e17698f fix: prefer IPv4 addresses when resolving domains
• 60f4f79 build: add Node 16 and 18 to the CI matrix
• 6ff5aaf chore(release): 6.3.19 [skip ci]
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by karmarunnerbot, a new releaser for karma since your current version.

Updates multimatch from 2.0.0 to 2.1.0

Commits

• 5b56d16 2.1.0
• 838772e bump deps
• 186ee64 Close #17 PR: Clarify how multiple patterns work in the readme.
• 0cb5f09 Merge pull request #16 from dsblv/master
• 093a37a fixed misleading tests
• f64573e Tweaks
• d4a5259 Use arrify
• caa6caf Update .travis.yml
• See full diff in compare view

Updates protractor from 1.8.0 to 7.0.0

Release notes

Sourced from protractor's releases.

5.4.3

typescript 3.7 compatibility

Resolves #5348 which was causing incompatibility with TypeScript 3.7

Changelog

Sourced from protractor's changelog.

7.0.0

• (9d2e18e) refactor: use console.log instead of util.puts

  utils.puts is no longer available in Node.JS 12

• (c281157) refactor: remove debugger and explore methods

  BREAKING CHANGE: Debugger and explore methods are not compatable with Node 8+. Use debugger keyword instead. See: https://goo.gl/MvWqFh

• (7cdb978) build: update several dev packages that have security issues

• (8e82835) build: update webdriver-manager

• (a1fe5f2) ci: update tests to run on Node 10 and 12

• (3fc9220) fix: prototype Pollution vulnerability through outdated yargs package

  BREAKING CHANGE:

  Node.Js version 6 and 8 are no longer supported. Please update to Node.Js 10+

  Closes #5431

5.4.4

Fixes

• fix: security prototype pollution

5.4.3

Fixes

fix(index.ts): Fix exports to unbreak TypeScript 3.7 build

5.4.2

Features

• (db1b638) feat(saucelabs): add sauceRegion support for eu datacenters (#5083)

... (truncated)

Commits

• 71771de release: 7.0.0
• 9d2e18e refactor: use console.log instead of util.puts
• c281157 refactor: remove debugger and explore methods
• 7cdb978 build: update several dev packages that have security issues
• 8e82835 build: update webdriver-manager
• a1fe5f2 ci: update tests to run on Node 10 and 12
• 3fc9220 fix: prototype Pollution vulnerability through outdated yargs package
• a0ffa9b release: 5.4.4
• 8b3ebf8 fix: security prototype pollution
• 162f9e5 ci: Log sauce connect proxy to stdout, remove travis_wait, upgrade proxy to 4...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.