Bump braces and hexo-cli in /docs/source

[dependabot[bot]]

Bumps braces to 2.3.2 and updates ancestor dependency hexo-cli. These dependencies need to be updated together.

Updates braces from 1.8.5 to 2.3.2

Changelog

Sourced from braces's changelog.

[2.3.2] - 2018-04-08

• start refactoring
• cover sets
• better range handling

[2.3.1] - 2018-02-17

• Remove unnecessary escape in Regex. (#14)

[2.3.0] - 2017-10-19

• minor code reorganization
• optimize regex
• expose maxLength option

[2.2.1] - 2017-05-30

• don't condense when braces contain extglobs

[2.2.0] - 2017-05-28

• ensure word boundaries are preserved
• fixes edge case where extglob characters precede a brace pattern

[2.1.1] - 2017-04-27

• use snapdragon-node
• handle edge case
• optimizations, lint

[2.0.4] - 2017-04-11

• pass opts to compiler
• minor optimization in create method
• re-write parser handlers to remove negation regex

[2.0.3] - 2016-12-10

• use split-string
• clear queue at the end
• adds sequences example
• add unit tests

[2.0.2] - 2016-10-21

• fix comma handling in nested extglobs

[2.0.1] - 2016-10-20

... (truncated)

Commits

• See full diff in compare view

Updates hexo-cli from 1.1.0 to 4.3.0

Release notes

Sourced from hexo-cli's releases.

4.3.0

Feature

• feat(version): show distro version @​curbengh (#239)

Refactor

• refactor & style: let command default to be 'help' @​cokemine (#277)

CI/CD

• Update actions/setup-node action to v2 @​stevenjoezhang (#274)

Misc

• Publish assets @​stevenjoezhang (#266)

Dependencies

• chore: bump eslint from 7.7.0 to 7.28.0 @​dependabot (#243, #237, #275, #296, #310)
• chore(deps): bump hexo-util from 2.2.0 to 2.5.0 @​dependabot-preview (#234, #238, #299)
• chore(deps): [security] bump highlight.js from 10.1.1 to 10.5.0 @​dependabot-preview (#262, #268)
• chore(deps-dev): bump mocha from 8.1.1 to 8.2.0 @​dependabot-preview (#258, #288, #253)
• chore: bump glob-parent from 5.1.1 to 5.1.2 @​dependabot (#312)
• chore: bump sinon from 9.0.2 to 11.1.1 @​dependabot (#235, #251, #257, #272, #293, #306)
• Upgrade to GitHub-native Dependabot @​dependabot-preview (#297)
• chore(deps): bump chalk from 4.1.0 to 4.1.1 @​dependabot-preview (#295)
• chore(deps-dev): bump chai from 4.2.0 to 4.3.4 @​dependabot-preview (#276, #289)
• chore(deps): bump resolve from 1.17.0 to 1.20.0 @​dependabot-preview (#279)
• chore(deps): [security] bump y18n from 4.0.0 to 4.0.1 @​dependabot-preview (#292)
• chore(deps): [security] bump prismjs from 1.20.0 to 1.23.0 @​dependabot-preview (#232, #283)
• chore(deps-dev): bump hexo-renderer-marked from 3.3.0 to 4.0.0 @​dependabot-preview (#247, #278)

4.2.0

Changes

• feat(init): support pnpm and drop yarn 2 @​curbengh (#227)
• fix(init): show where to run npm @​curbengh (#228)

Dependencies

• chore(deps-dev): bump mocha from 8.0.1 to 8.1.1 (#231)
• chore(deps-dev): bump eslint from 7.5.0 to 7.6.0 (#230)

4.1.0

Changes

• chore(assets): update to latest hexo-starter to use hexo 5.0.0 @​SukkaW (#225)

Dependencies

... (truncated)

Commits

• 5c16a82 chore: update 4.2.0 to 4.3.0 (#309)
• 629a84a chore: bump eslint from 7.27.0 to 7.28.0 (#310)
• 0f8d0f2 chore(deps): bump hexo-util from 2.4.0 to 2.5.0 (#299)
• 997da65 chore: bump glob-parent from 5.1.1 to 5.1.2 (#312)
• b971ff5 chore: bump eslint from 7.25.0 to 7.27.0 (#303)
• cab2695 chore: bump sinon from 10.0.1 to 11.1.1 (#306)
• 7f16a7d ci: drop Node.js 10 and add Node.js 16
• d07f913 Publish assets (#266)
• f740e4f chore: use GitHub-native Dependabot (#297)
• b072a49 chore(deps): [security] bump lodash from 4.17.19 to 4.17.21 (#300)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by yoshinorin, a new releaser for hexo-cli since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the Security Alerts page.