Bump file-type from 16.3.0 to 16.5.4

[dependabot[bot]]

Bumps file-type from 16.3.0 to 16.5.4.

Release notes

Sourced from file-type's releases.

v16.5.4

• Fix: Malformed MKV could cause an infinite loop https://github.com/sindresorhus/file-type/commit/d86835680f4cccbee1a60628783c36700ec9e254
  • CVE-2022-36313
  • Also fixed in 17.1.3

v16.5.3

• Upgrade dependencies https://github.com/sindresorhus/file-type/commit/3b08ab1e7404dc00dfb3050d6f34821ae300b59c

v16.5.2

• Lock strtok3 dependency

v16.5.1

• Fix mimeTypes TypeScript type (#464) 0012c56

https://github.com/sindresorhus/file-type/compare/v16.5.0...v16.5.1

v16.5.0

• Add support for JPEG XL image format (#455) 57ecf2d
• Remove ASAR 240 bytes of JSON payload length limitation (#453) 07101ac
• Remove an unnecessary dependency (#458) 3df0ed1

https://github.com/sindresorhus/file-type/compare/v16.4.0...v16.5.0

v16.4.0

• Add support for VCF and fix ICS detection (#451) 29618c8
• Add support for XCF (#450) 6ab25f3

https://github.com/sindresorhus/file-type/compare/v16.3.0...v16.4.0

Commits

• 99cb019 17.1.2
• 1b10a71 Improve decoding of mime-type in ZIP file (#546)
• cffcf1f Add note about ESM
• 6c7ac31 Update GitHub Actions (#543)
• 330e6b9 Enforce alphabetical order for supported file types list (#531)
• 093eafe Remove duplicate code (#530)
• e4a809e Improve docs for fileTypeFromBlob
• d0f31fe 17.1.1
• d89a4a1 Improve signature ordering detection requirements (#518)
• 1a553e7 Update dependencies (#519)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.