build(deps): bump superagent from 8.1.2 to 10.0.0

[dependabot]

Bumps superagent from 8.1.2 to 10.0.0.

Release notes

Sourced from superagent's releases.

v10.0.0

• fix: remove husky from prepare 18321c5
• chore: fixpack 0085aba
• chore: fix tinyify version efae48c
• Merge pull request #1812 from yigaldviri/brotli de9d760
• feat(brotli): support brotli compression format 5ab6b88

ladjs/superagent@v9.0.2...v10.0.0

v9.0.2

• Merge pull request #1803 from alumni/fix-url-parse 329cc63
• fix: replace deprecated url.parse() with new URL() 8ead63f
• Merge pull request #1804 from alumni/remove-semver 9406dae
• chore: remove unnecessary semver checks 86c9bf4
• Merge pull request #1802 from alumni/fix-url-parse e996382
• fix: replace deprecated node:url methods 7e20ced

ladjs/superagent@v9.0.1...v9.0.2

v9.0.1

• Merge pull request #1796 from mmmmmrob/patch-2 68f7bb1
• Merge branch 'master' into patch-2 450f7b2
• Merge pull request #1794 from SukkaW/replace-polyfill-io ea633d7
• Merge pull request #1791 from HannesOberreiter/patch-1 e334068
• Update README.md a5c39b2
• Add superagent-cheerio to the readme 0165c7c
• docs: no longer recommend polyfill.io da9ff20
• Update README.md c4205e0

ladjs/superagent@v9.0.0...v9.0.1

v9.0.0

• fix: fixed ci job not installing npm deps 489708e
• fix: fix numeric identifier issue ea2577e
• fix: drop support for node < v14.18.0 due to formidable node:fs scope import statement (per #1800) 23fe5ab
• Merge pull request #1800 from tomstrong64/master 03de30c
• fix: formidable v3 multipart form contents mapped to expected format b9c7837
• Update formidable 3ee138d
• test: replace should with node:assert (#1782) 1c8338b
• test: replace should with node:assert (#1780) 0dc80d1
• Merge pull request #1777 from jimmywarting/classify 83e92cb
• classify agent fca95a3

ladjs/superagent@v8.1.2...v9.0.0

Commits

• 134cdd7 10.0.0
• 18321c5 fix: remove husky from prepare
• 0085aba chore: fixpack
• efae48c chore: fix tinyify version
• de9d760 Merge pull request #1812 from yigaldviri/brotli
• 5ab6b88 feat(brotli): support brotli compression format
• 3317168 9.0.2
• 329cc63 Merge pull request #1803 from alumni/fix-url-parse
• 8ead63f fix: replace deprecated url.parse() with new URL()
• 9406dae Merge pull request #1804 from alumni/remove-semver
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by titanism, a new releaser for superagent since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

The following labels could not be found: javascript, Changed.

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/[email protected]	environment, filesystem, network Transitive: eval, shell	+117	21.1 MB	titanism

🚮 Removed packages: npm/[email protected]

View full report↗︎

[socket-security]

🚨 Potential security issues detected. Learn more about Socket for GitHub ↗︎

To accept the risk, merge this PR and you will not be notified again.

Alert	Package	Note	Source	CI
Native code	npm/[email protected]	Location: Package overview	package-lock.json package.json	🚫

View full report↗︎

Next steps

What's wrong with native code?

Contains native code which could be a vector to obscure malicious code, and generally decrease the likelihood of reproducible or reliable installs.

Ensure that native code bindings are expected. Consumers may consider pure JS and functionally similar alternatives to avoid the challenges and risks associated with native code bindings.

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/[email protected] or ignore all packages with @SocketSecurity ignore-all

• @SocketSecurity ignore npm/[email protected]

[dependabot]

Superseded by #1154.