Bump minimatch and font-spider

[dependabot]

Bumps minimatch and font-spider. These dependencies needed to be updated together.
Updates minimatch from 0.2.14 to 3.0.4

Commits

• e46989a v3.0.4
• ddfacbd update brace-expansion
• 55ed736 update package scripts and deps
• eed8949 v3.0.3
• ecabc57 Do not throw on unfinished !( extglob patterns
• 81edb7c v3.0.2
• 6944abf Handle extremely long and terrible patterns more gracefully
• 8ac560e v3.0.1
• 4f3a8bc update tap
• 9cf2d88 Remove mentions of cache from readme
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by isaacs, a new releaser for minimatch since your current version.

Updates font-spider from 1.3.4 to 1.3.5

Changelog

Sourced from font-spider's changelog.

1.3.5

• 修复与 Node v12.6.0 兼容问题

1.3.1

• 支持 input[placeholder] 内容 #99
• 修复字体压缩后在 IE 下 <br> 标签显示乱码的问题 #91

1.3.0

• 支持 otf 格式（不完善）

1.2.0

• 在终端增加嵌入字体的字符数量的显示

1.1.3

• 修复使用 !important 后计算 font-family 最终值计算不正确的 BUG
• 支持 font-family 关键字 serif、sans-serif、monospace、cursive、fantasy、initial、inherit

1.1.2

• 修复 font 缩写的 BUG

1.1.1

• 添加 debug 参数
• 修复多行选择器可能导致查询的文本缺失的 BUG
• 修复无字符的时候，压缩器无限等待的 BUG

1.1.0

• 添加对 woff2 格式字体支持

1.0.1

• 对不支持的字体格式抛异常
• 修复命令行工具遇到空 WebFonts 的时候报错

1.0.0

• 重构爬虫模块，使用 browser-x 来虚拟浏览器环境
• 支持伪元素 content 继承的字体，进而支持了采用此的图标字体库
• 支持伪元素 content: 'prefix' 和 content: attr(value) 模式
• 支持行内样式的 font-family 解析
• 提供新的 API、更好的支持远程资源解析
• 大幅度提高运行速度
• 修复 CSS font-weight 可能导致遗漏字符的 BUG #62

... (truncated)

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.