From cb22d8dcdeb7c0e4e1bdee5eaa5be183ef23a1f2 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 27 Jun 2025 23:29:06 -0700
Subject: [PATCH] build(deps): bump statuses from 2.0.1 to 2.0.2 (#1888)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Bumps [statuses](https://github.com/jshttp/statuses) from 2.0.1 to
2.0.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/jshttp/statuses/releases">statuses's
releases</a>.</em></p>
<blockquote>
<h2>v2.0.2</h2>
<h2>What's Changed</h2>
<ul>
<li>Ci/add missing node versions by <a
href="https://github.com/carpasse"><code>@​carpasse</code></a> in <a
href="https://redirect.github.com/jshttp/statuses/pull/32">jshttp/statuses#32</a></li>
<li>chore: add support for OSSF scorecard reporting by <a
href="https://github.com/inigomarquinez"><code>@​inigomarquinez</code></a>
in <a
href="https://redirect.github.com/jshttp/statuses/pull/24">jshttp/statuses#24</a></li>
<li>chore: pin dependencies and specify permissions in the pipeline by
<a
href="https://github.com/inigomarquinez"><code>@​inigomarquinez</code></a>
in <a
href="https://redirect.github.com/jshttp/statuses/pull/25">jshttp/statuses#25</a></li>
<li>docs: add openssf badge in readme file by <a
href="https://github.com/inigomarquinez"><code>@​inigomarquinez</code></a>
in <a
href="https://redirect.github.com/jshttp/statuses/pull/29">jshttp/statuses#29</a></li>
<li>chore: add codeql pipeline by <a
href="https://github.com/inigomarquinez"><code>@​inigomarquinez</code></a>
in <a
href="https://redirect.github.com/jshttp/statuses/pull/26">jshttp/statuses#26</a></li>
<li>chore: add dependency review tool by <a
href="https://github.com/inigomarquinez"><code>@​inigomarquinez</code></a>
in <a
href="https://redirect.github.com/jshttp/statuses/pull/27">jshttp/statuses#27</a></li>
<li>chore: add dependabot by <a
href="https://github.com/inigomarquinez"><code>@​inigomarquinez</code></a>
in <a
href="https://redirect.github.com/jshttp/statuses/pull/28">jshttp/statuses#28</a></li>
<li>fix: use <code>ubuntu-latest</code> as ci runner by <a
href="https://github.com/UlisesGascon"><code>@​UlisesGascon</code></a>
in <a
href="https://redirect.github.com/jshttp/statuses/pull/33">jshttp/statuses#33</a></li>
<li>Replace deprecated String.prototype.substr() by <a
href="https://github.com/CommanderRoot"><code>@​CommanderRoot</code></a>
in <a
href="https://redirect.github.com/jshttp/statuses/pull/23">jshttp/statuses#23</a></li>
<li>ci: modernize pipelines by <a
href="https://github.com/UlisesGascon"><code>@​UlisesGascon</code></a>
in <a
href="https://redirect.github.com/jshttp/statuses/pull/34">jshttp/statuses#34</a></li>
<li>fix: typo in pipeline by <a
href="https://github.com/UlisesGascon"><code>@​UlisesGascon</code></a>
in <a
href="https://redirect.github.com/jshttp/statuses/pull/39">jshttp/statuses#39</a></li>
<li>build(deps-dev): bump raw-body from 2.4.1 to 2.5.2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/jshttp/statuses/pull/35">jshttp/statuses#35</a></li>
<li>build(deps-dev): bump eslint-plugin-promise from 4.2.1 to 4.3.1 by
<a href="https://github.com/dependabot"><code>@​dependabot</code></a> in
<a
href="https://redirect.github.com/jshttp/statuses/pull/36">jshttp/statuses#36</a></li>
<li>build(deps-dev): bump csv-parse from 4.15.1 to 4.16.3 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/jshttp/statuses/pull/37">jshttp/statuses#37</a></li>
<li>build(deps-dev): bump eslint-plugin-import from 2.23.2 to 2.31.0 by
<a href="https://github.com/dependabot"><code>@​dependabot</code></a> in
<a
href="https://redirect.github.com/jshttp/statuses/pull/38">jshttp/statuses#38</a></li>
<li>Release: 2.0.2 by <a
href="https://github.com/UlisesGascon"><code>@​UlisesGascon</code></a>
in <a
href="https://redirect.github.com/jshttp/statuses/pull/40">jshttp/statuses#40</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/carpasse"><code>@​carpasse</code></a>
made their first contribution in <a
href="https://redirect.github.com/jshttp/statuses/pull/32">jshttp/statuses#32</a></li>
<li><a
href="https://github.com/inigomarquinez"><code>@​inigomarquinez</code></a>
made their first contribution in <a
href="https://redirect.github.com/jshttp/statuses/pull/24">jshttp/statuses#24</a></li>
<li><a
href="https://github.com/UlisesGascon"><code>@​UlisesGascon</code></a>
made their first contribution in <a
href="https://redirect.github.com/jshttp/statuses/pull/33">jshttp/statuses#33</a></li>
<li><a
href="https://github.com/CommanderRoot"><code>@​CommanderRoot</code></a>
made their first contribution in <a
href="https://redirect.github.com/jshttp/statuses/pull/23">jshttp/statuses#23</a></li>
<li><a
href="https://github.com/dependabot"><code>@​dependabot</code></a> made
their first contribution in <a
href="https://redirect.github.com/jshttp/statuses/pull/35">jshttp/statuses#35</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/jshttp/statuses/compare/v2.0.1...v2.0.2">https://github.com/jshttp/statuses/compare/v2.0.1...v2.0.2</a></p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/jshttp/statuses/blob/master/HISTORY.md">statuses's
changelog</a>.</em></p>
<blockquote>
<h1>2.0.2 / 2025-06-06</h1>
<ul>
<li>Migrate to <code>String.prototype.slice()</code></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/jshttp/statuses/commit/33ec007ae094c35edb35d9edd293b9524b3adcb9"><code>33ec007</code></a>
2.0.2 (<a
href="https://redirect.github.com/jshttp/statuses/issues/40">#40</a>)</li>
<li><a
href="https://github.com/jshttp/statuses/commit/cc539ee32ce575f6f4dfac022bcbaf1320ad414b"><code>cc539ee</code></a>
build(deps-dev): bump eslint-plugin-import from 2.23.2 to 2.31.0 (<a
href="https://redirect.github.com/jshttp/statuses/issues/38">#38</a>)</li>
<li><a
href="https://github.com/jshttp/statuses/commit/c3a417aa27552de0a8de53ca8e3b1e84dfe6c235"><code>c3a417a</code></a>
build(deps-dev): bump csv-parse from 4.15.1 to 4.16.3 (<a
href="https://redirect.github.com/jshttp/statuses/issues/37">#37</a>)</li>
<li><a
href="https://github.com/jshttp/statuses/commit/99d64aeffe544ad13063f2d6ce6ff0526748c1a8"><code>99d64ae</code></a>
build(deps-dev): bump eslint-plugin-promise from 4.2.1 to 4.3.1 (<a
href="https://redirect.github.com/jshttp/statuses/issues/36">#36</a>)</li>
<li><a
href="https://github.com/jshttp/statuses/commit/6eb7e1199dd961e4fbb9639fd3b0f525f5202497"><code>6eb7e11</code></a>
build(deps-dev): bump raw-body from 2.4.1 to 2.5.2 (<a
href="https://redirect.github.com/jshttp/statuses/issues/35">#35</a>)</li>
<li><a
href="https://github.com/jshttp/statuses/commit/2e7a28e297f67bd971ff3e655e8e57510fe0ed5a"><code>2e7a28e</code></a>
fix: typo in pipeline (<a
href="https://redirect.github.com/jshttp/statuses/issues/39">#39</a>)</li>
<li><a
href="https://github.com/jshttp/statuses/commit/8f80743554e389fe534eac0bf2818ffe63181184"><code>8f80743</code></a>
ci: modernize pipelines (<a
href="https://redirect.github.com/jshttp/statuses/issues/34">#34</a>)</li>
<li><a
href="https://github.com/jshttp/statuses/commit/ed17ccd1d6c03c774ade0c5ac47b625100cf5cb0"><code>ed17ccd</code></a>
chore: migrate to <code>String.prototype.slice()</code> (<a
href="https://redirect.github.com/jshttp/statuses/issues/23">#23</a>)</li>
<li><a
href="https://github.com/jshttp/statuses/commit/76d850208bf29171b5cc80c449e53f4e586ca5db"><code>76d8502</code></a>
fix: use <code>ubuntu-latest</code> as ci runner (<a
href="https://redirect.github.com/jshttp/statuses/issues/33">#33</a>)</li>
<li><a
href="https://github.com/jshttp/statuses/commit/4f369f5942f3e57808ba378256f7f42ddf4ee009"><code>4f369f5</code></a>
ci: add dependabot (<a
href="https://redirect.github.com/jshttp/statuses/issues/28">#28</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/jshttp/statuses/compare/v2.0.1...v2.0.2">compare
view</a></li>
</ul>
</details>
<details>
<summary>Maintainer changes</summary>
<p>This version was pushed to npm by <a
href="https://www.npmjs.com/~ulisesgascon">ulisesgascon</a>, a new
releaser for statuses since your current version.</p>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=statuses&package-manager=npm_and_yarn&previous-version=2.0.1&new-version=2.0.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 package-lock.json | 15 ++++++++++++---
 1 file changed, 12 insertions(+), 3 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index 0a1fadf..2c872a4 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -2543,6 +2543,15 @@
         "node": ">= 0.8"
       }
     },
+    "node_modules/http-errors/node_modules/statuses": {
+      "version": "2.0.1",
+      "resolved": "https://registry.npmjs.org/statuses/-/statuses-2.0.1.tgz",
+      "integrity": "sha512-RwNA9Z/7PrK06rYLIzFMlaF+l73iwpzsqRIFgbMLbTcLD6cOao82TaWefPXQvB2fOC4AjuYSEndS7N/mTCbkdQ==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.8"
+      }
+    },
     "node_modules/ignore": {
       "version": "5.3.2",
       "resolved": "https://registry.npmjs.org/ignore/-/ignore-5.3.2.tgz",
@@ -4473,9 +4482,9 @@
       }
     },
     "node_modules/statuses": {
-      "version": "2.0.1",
-      "resolved": "https://registry.npmjs.org/statuses/-/statuses-2.0.1.tgz",
-      "integrity": "sha512-RwNA9Z/7PrK06rYLIzFMlaF+l73iwpzsqRIFgbMLbTcLD6cOao82TaWefPXQvB2fOC4AjuYSEndS7N/mTCbkdQ==",
+      "version": "2.0.2",
+      "resolved": "https://registry.npmjs.org/statuses/-/statuses-2.0.2.tgz",
+      "integrity": "sha512-DvEy55V3DB7uknRo+4iOGT5fP1slR8wQohVdknigZPMpMstaKJQWhwiYBACJE3Ul2pTnATihhBYnRhZQHGBiRw==",
       "license": "MIT",
       "engines": {
         "node": ">= 0.8"