Bump braces, hexo and hexo-deployer-git

[dependabot]

Bumps braces, hexo and hexo-deployer-git. These dependencies needed to be updated together.
Updates braces from 1.8.5 to 3.0.2

Changelog

Sourced from braces's changelog.

Release history

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog and this project adheres to Semantic Versioning.

• Changelogs are for humans, not machines.
• There should be an entry for every single version.
• The same types of changes should be grouped.
• Versions and sections should be linkable.
• The latest version comes first.
• The release date of each versions is displayed.
• Mention whether you follow Semantic Versioning.

Changelog entries are classified using the following labels (from keep-a-changelog):

• Added for new features.
• Changed for changes in existing functionality.
• Deprecated for soon-to-be removed features.
• Removed for now removed features.
• Fixed for any bug fixes.
• Security in case of vulnerabilities.

[3.0.0] - 2018-04-08

v3.0 is a complete refactor, resulting in a faster, smaller codebase, with fewer deps, and a more accurate parser and compiler.

Breaking Changes

• The undocumented .makeRe method was removed

Non-breaking changes

• Caching was removed

[2.3.2] - 2018-04-08

• start refactoring
• cover sets

... (truncated)

Commits

• 2579151 3.0.2
• 3c51342 3.0.1
• 3d461a1 ensure brackets are matched
• abcf341 3.0.0
• 68a3fdf refactor
• bb5b5ba Remove appveyor from readme.
• 086008a travis: Drop sudo: false.
• 4ed704b add unit tests
• 60eb988 ranges
• 7b1abf0 Use proper nodejs versions for appveyor.
• Additional commits viewable in compare view

Updates hexo from 3.4.4 to 3.9.0

Release notes

Sourced from hexo's releases.

3.9.0

New Features

• Updated hexo-renderer-marked to 1.0.1 (#3571)
• Updated hexo-fs to 1.0.0 (#3301)
• TOC: Seek anchor id from parent nodes when target is not available (#3404)
• tag/include_code now can include ranged code lines (#3393)

Bug Fixes

• DisableNunjucks: true should render markdown code block (#3573)
• Changing source config should generate assets (#3399)

Refactor

• Spread function: Hexo built-in plugin blockquote (#3291)
• ES6 block scoping refactor (#3294)
• Use spread syntax (#3333)

Housekeeping

• #3326 #3324 #3315 #3300 #3329 #3359 #3369 #3368 #3367 #3569

It is a great release and thanks for hardworking from all contributors. 🤗

3.8.0

New Features

• Supported absolute config path (#3118)
• Added command line option --output to write db.json and _multiconfig to different paths (#3122)
• Added meta generator injection filter (#3129)

Housekeeping

• #3124, #3117, #3102, #3276, #3284, #3285, #3290, #3293

3.7.1

Fixes

• Use old language file selection when no default file exists (#3110)
• invalidate filters when return undefined (#3090)
• Post.render callback should be triggered (#3051)

Housekeeping

• remove jscs from contribution docs (#3111)

3.7.0

New Features

• add after_clean filter (#2886)

Fixes

• use default language when no language is set (#3069)

... (truncated)

Commits

• 7fba3c1 3.9.0
• 9d09d2e DisableNunjucks: true should render markdown code block (#3573)
• 61cbc62 chore(stale): stale bot limit to only issue (#3555)
• 6e6ee20 add another test case (disableNunjucks === false) for PR #3573
• d21aa32 add unit test for disableNunjucks property of renderer; PR #3573 https://gith...
• 61781ad chore(deps-dev): replace deprecated istanbul with nyc (#3570)
• 995097e fix the issue that code blocks in markdown are rendered as placeholder after ...
• 1b432c3 Merge pull request #3571 from weyusi/marked
• 18aa36c chore: remove .npmignore (#3569)
• 1345eaf test: fix new line
• Additional commits viewable in compare view

Updates hexo-deployer-git from 0.3.1 to 3.0.0

Release notes

Sourced from hexo-deployer-git's releases.

v3.0.0

Changes

• release: 3.0.0 @​stevenjoezhang (#198)
• Replace swig-templates with nunjucks @​stevenjoezhang (#173)

Dependencies

• chore(deps-dev): bump mocha from 7.2.0 to 8.0.1 @​dependabot-preview (#190)
• chore(deps-dev): bump eslint from 6.8.0 to 7.1.0 @​dependabot-preview (#188)
• chore(deps): bump hexo-fs from 2.0.0 to 3.0.1 @​dependabot-preview (#178)
• chore(deps): bump hexo-util from 1.9.0 to 2.1.0 @​dependabot-preview (#184)
• Bump eslint-config-hexo from 3.0.0 to 4.1.0 @​dependabot-preview (#156)
• chore(deps): bump chalk from 3.0.0 to 4.0.0 @​dependabot-preview (#176)
• chore(deps-dev): bump mocha from 6.2.3 to 7.1.2 @​dependabot-preview (#179)
• Bump nyc from 14.1.1 to 15.0.0 @​dependabot-preview (#157)

Misc

• ci: drop node 8 & add node 14 @​SukkaW (#181)
• chore: add release-drafter @​YoshinoriN (#166)

2.1.0

Feature

• Support authenticating using an access token (either the value itself or an environment variable) specified in the config. (#135)

2.0.0

Breaking change

• Requires Node 8 or above (#138)

Refactor

• Update syntax to ES6 (#141)

Housekeeping

• Update hexo-util from ^0.6.0 to ^1.0.0 (#145)

1.0.0

BREAKING Changes:

• Replace swig by swig-templates (#100)

Fixes:

• Install command in npm@5 (#89)
• Inherit stdio in spawned git process (#82)

Improvement

• specify files to shrink package size ca449bb

... (truncated)

Commits

• 70e2c8f release: 3.0.0 (#198)
• a431418 chore(deps-dev): bump mocha from 7.2.0 to 8.0.1 (#190)
• d95bf33 chore(deps-dev): bump eslint from 6.8.0 to 7.1.0 (#188)
• 751b7a7 chore(deps): bump hexo-fs from 2.0.0 to 3.0.1 (#178)
• c312a15 chore(deps): bump hexo-util from 1.9.0 to 2.1.0 (#184)
• 6abb97b ci: drop node 8 & add node 14 (#181)
• d38cabd chore(deps-dev): eslint-config-hexo from 3.0.0 to 4.1.0 (#156)
• 6e84df7 chore(deps): bump chalk from 3.0.0 to 4.0.0 (#176)
• da86591 chore(deps-dev): bump mocha from 6.2.3 to 7.1.2 (#179)
• 6732e1e chore: add release-drafter (#166)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by yoshinorin, a new releaser for hexo-deployer-git since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.