fix(deps): update dependency dot-prop to v4.2.1 [security]

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
dot-prop	dependencies	patch	4.2.0 -> 4.2.1

GitHub Vulnerability Alerts

CVE-2020-8116

Prototype pollution vulnerability in dot-prop npm package before versions 4.2.1 and 5.1.1 allows an attacker to add arbitrary properties to JavaScript language constructs such as objects.

---

Release Notes

sindresorhus/dot-prop

v4.2.1

Compare Source

• Backport 3039c8c to the v4.x release line.

---

Renovate configuration

📅 Schedule: "" (UTC).

🚦 Automerge: Disabled due to failing status checks.

♻️ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by WhiteSource Renovate. View repository job log here.

[renovate]

Renovate Ignore Notification

Because you closed this PR without merging, Renovate will ignore this update (^4.2.0). You will get a PR once a newer version is released. To ignore this dependency forever, add it to the ignoreDeps array of your Renovate config.

If you accidentally closed this PR, or if you changed your mind: rename this PR to get a fresh replacement PR.