From f751836a7e19262baa68dc06585e84711239a793 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 13 Feb 2024 10:32:21 +0000
Subject: [PATCH] Bump dotenv from 16.4.1 to 16.4.3 (#795)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Bumps [dotenv](https://github.com/motdotla/dotenv) from 16.4.1 to
16.4.3.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md">dotenv's
changelog</a>.</em></p>
<blockquote>
<h2><a
href="https://github.com/motdotla/dotenv/compare/v16.4.2...v16.4.3">16.4.3</a>
(2024-02-12)</h2>
<h3>Changed</h3>
<ul>
<li>Fixed processing of multiple files in <code>options.path</code> <a
href="https://redirect.github.com/motdotla/dotenv/pull/805">#805</a></li>
</ul>
<h2><a
href="https://github.com/motdotla/dotenv/compare/v16.4.1...v16.4.2">16.4.2</a>
(2024-02-10)</h2>
<h3>Changed</h3>
<ul>
<li>Changed funding link in package.json to <a
href="https://dotenvx.com"><code>dotenvx.com</code></a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/motdotla/dotenv/commit/6581b54d7dfdcfa331f3c1af8cbb5948fcdf44c1"><code>6581b54</code></a>
16.4.3</li>
<li><a
href="https://github.com/motdotla/dotenv/commit/1cf05e34eb94a4ac52606311efc3d4767a44feac"><code>1cf05e3</code></a>
Merge pull request <a
href="https://redirect.github.com/motdotla/dotenv/issues/808">#808</a>
from motdotla/changelog</li>
<li><a
href="https://github.com/motdotla/dotenv/commit/f44c0be24457476f06d21b76be021952a49d8315"><code>f44c0be</code></a>
no 22 support yet</li>
<li><a
href="https://github.com/motdotla/dotenv/commit/a992c3e5e609aa5cc53eb39c9420e821f062b1ac"><code>a992c3e</code></a>
remove eol node 12 and add node 22</li>
<li><a
href="https://github.com/motdotla/dotenv/commit/232a29fd985fd0b49ec6c315cb2b0ec0868d1f5d"><code>232a29f</code></a>
package-lock update</li>
<li><a
href="https://github.com/motdotla/dotenv/commit/e8e2c9950397d82ea215b5d568c41a7f6047c4ae"><code>e8e2c99</code></a>
changelog 🪵</li>
<li><a
href="https://github.com/motdotla/dotenv/commit/fe5ac4d3416a99eff3624ee19c137ee7599858d0"><code>fe5ac4d</code></a>
Merge pull request <a
href="https://redirect.github.com/motdotla/dotenv/issues/805">#805</a>
from thanosd/bug/fix-merge-multiple-files</li>
<li><a
href="https://github.com/motdotla/dotenv/commit/5ae3ed2d1a6189d428f6c329efc277b3170211bb"><code>5ae3ed2</code></a>
Updating to always use <code>override</code> flag</li>
<li><a
href="https://github.com/motdotla/dotenv/commit/f6e87eb03705e4b8abcc159ef88e4c0f2992ced4"><code>f6e87eb</code></a>
Merge pull request <a
href="https://redirect.github.com/motdotla/dotenv/issues/807">#807</a>
from motdotla/codecov</li>
<li><a
href="https://github.com/motdotla/dotenv/commit/5fd07f774b03bd25f031b019606d848b2f8c9848"><code>5fd07f7</code></a>
add badge</li>
<li>Additional commits viewable in <a
href="https://github.com/motdotla/dotenv/compare/v16.4.1...v16.4.3">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dotenv&package-manager=npm_and_yarn&previous-version=16.4.1&new-version=16.4.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 package-lock.json | 16 ++++++++--------
 package.json      |  2 +-
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index 865b1980..bf1c4ddd 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -9,7 +9,7 @@
       "version": "0.1.0",
       "dependencies": {
         "@x-govuk/govuk-prototype-components": "^3.0.3",
-        "dotenv": "^16.4.1",
+        "dotenv": "^16.4.3",
         "express": "~4.18.2",
         "govuk-frontend": "^5.0.0",
         "nunjucks": "^3.2.4",
@@ -1315,14 +1315,14 @@
       }
     },
     "node_modules/dotenv": {
-      "version": "16.4.1",
-      "resolved": "https://registry.npmjs.org/dotenv/-/dotenv-16.4.1.tgz",
-      "integrity": "sha512-CjA3y+Dr3FyFDOAMnxZEGtnW9KBR2M0JvvUtXNW+dYJL5ROWxP9DUHCwgFqpMk0OXCc0ljhaNTr2w/kutYIcHQ==",
+      "version": "16.4.3",
+      "resolved": "https://registry.npmjs.org/dotenv/-/dotenv-16.4.3.tgz",
+      "integrity": "sha512-II98GFrje5psQTSve0E7bnwMFybNLqT8Vu8JIFWRjsE3khyNUm/loZupuy5DVzG2IXf/ysxvrixYOQnM6mjD3A==",
       "engines": {
         "node": ">=12"
       },
       "funding": {
-        "url": "https://github.com/motdotla/dotenv?sponsor=1"
+        "url": "https://dotenvx.com"
       }
     },
     "node_modules/easy-extender": {
@@ -5686,9 +5686,9 @@
       }
     },
     "dotenv": {
-      "version": "16.4.1",
-      "resolved": "https://registry.npmjs.org/dotenv/-/dotenv-16.4.1.tgz",
-      "integrity": "sha512-CjA3y+Dr3FyFDOAMnxZEGtnW9KBR2M0JvvUtXNW+dYJL5ROWxP9DUHCwgFqpMk0OXCc0ljhaNTr2w/kutYIcHQ=="
+      "version": "16.4.3",
+      "resolved": "https://registry.npmjs.org/dotenv/-/dotenv-16.4.3.tgz",
+      "integrity": "sha512-II98GFrje5psQTSve0E7bnwMFybNLqT8Vu8JIFWRjsE3khyNUm/loZupuy5DVzG2IXf/ysxvrixYOQnM6mjD3A=="
     },
     "easy-extender": {
       "version": "2.3.4",
diff --git a/package.json b/package.json
index 68adc278..26f3663b 100644
--- a/package.json
+++ b/package.json
@@ -9,7 +9,7 @@
   },
   "dependencies": {
     "@x-govuk/govuk-prototype-components": "^3.0.3",
-    "dotenv": "^16.4.1",
+    "dotenv": "^16.4.3",
     "express": "~4.18.2",
     "govuk-frontend": "^5.0.0",
     "nunjucks": "^3.2.4",