chore(deps): bump minimatch and serve-handler

[dependabot]

Bumps minimatch to 5.1.9 and updates ancestor dependency serve-handler. These dependencies need to be updated together.

Updates minimatch from 3.0.4 to 5.1.9

Changelog

Sourced from minimatch's changelog.

change log

10.2

• Add braceExpandMax option

10.1

• Add magicalBraces option for escape
• Fix makeRe when partial: true is set.
• Fix makeRe when pattern ends in a final ** path part.

10.0

• Require node 20 or 22 and higher

9.0

• No default export, only named exports.

8.0

• Recursive descent parser for extglob, allowing correct support for arbitrarily nested extglob expressions
• Bump required Node.js version

7.4

• Add escape() method
• Add unescape() method
• Add Minimatch.hasMagic() method

7.3

• Add support for posix character classes in a unicode-aware way.

7.2

• Add windowsNoMagicRoot option

7.1

• Add optimizationLevel configuration option, and revert the default back to the 6.2 style minimal optimizations, making the advanced transforms introduced in 7.0 opt-in. Also, process provided file paths in the same way in optimizationLevel:2 mode, so most things that matched with optimizationLevel 1 or 0 should match with level 2 as well. However, level 1 is the default, out of an abundance of caution.

... (truncated)

Commits

• 4419b6e 5.1.9
• 383ce59 docs: add warning about ReDoS
• b02ef18 fix partial matching of globstar patterns
• e92ae29 5.1.8
• 79e4447 limit recursion for **, improve perf considerably
• 85ec0ff lockfile update
• 647146e lock node version to 14
• 85646c8 5.1.7
• 977c2d8 update CI matrix and actions
• 421ad12 update test expectations for coalesced consecutive stars
• Additional commits viewable in compare view

Updates serve-handler from 6.1.0 to 6.1.7

Release notes

Sourced from serve-handler's releases.

6.1.7

Patches

• Fix: update minimatch to 3.1.5 to resolve security vulnerabilities: #228

Credits

Huge thanks to @​ParakhJaggi for helping!

6.1.6

Patches

• Replace the fast-url-parser module with the node:url module: #207
• Move tests and reporting to jest: #216
• Bump path-to-regexp to 3.3.0: #217

Credits

Huge thanks to @​gweesin, @​alana-cruickshank, and @​GabrielCastro for helping!

6.1.5

Patches

• Fix publish action: #189
• Ensure npm run prepublish gets executed: #190

6.1.4

Patches

• Bump lodash from 4.17.15 to 4.17.19: #124
• Bump codecov from 3.7.0 to 3.7.1: #126
• Bump node-fetch from 2.1.2 to 2.6.1: #131
• Update minimatch from 3.0.4 to 3.1.2: #180

Credits

Huge thanks to @​kachkaev for helping!

6.1.3

Patches

• Regenerate yarn.lock file: 55962ccdc80f00286b8f32e608020c5bac48ab61
• Update deps: 843e56e5c2e1f0486ae58550e60ed20df90239ef
• Update Readme for "Vercel" rename: b0f1a62764c00e82278c663a37c62c2be7f58fdc
• Prevent open redirects when cleanUrls config is enabled: #122

6.1.2

Patches

• Update deps to fix GitHub Security Alerts: #100

Credits

Huge thanks to @​TooTallNate for helping!

... (truncated)

Commits

• 5158ae7 6.1.7
• 754d1dc fix: update minimatch to 3.1.5 to resolve security vulnerabilities (#228)
• 8b357fa Revert "chore(deps): upgrade minimatch to v10.2.4 (#226)"
• 8df54ef chore(deps): upgrade minimatch to v10.2.4 (#226)
• 329bcba 6.1.6
• d6507c7 Update package.json (#220)
• 974a4fe Handle errors for bad symlinks (#219)
• fe7d998 Bump path-to-regexp to 3.3.0 (#217)
• e20d59e Move tests and reporting to jest (#216)
• 3c3854b feat: replace the 'fast-url-parser' module with the 'node:url' module (#207)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by vercel-release-bot, a new releaser for serve-handler since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

[github-actions]

This library is auto-generated by the Appwrite SDK Generator, and does not accept pull requests directly. To learn more about how you can help us improve this SDK, please check the contributing guide.

[dependabot]

OK, I won't notify you again about this release, but will get in touch when a new version is available.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.