Bump node-fetch and graphql-request

[dependabot]

Bumps node-fetch to 2.6.7 and updates ancestor dependency graphql-request. These dependencies need to be updated together.

Updates node-fetch from 2.1.2 to 2.6.7

Release notes

Sourced from node-fetch's releases.

v2.6.7

Security patch release

Recommended to upgrade, to not leak sensitive cookie and authentication header information to 3th party host while a redirect occurred

What's Changed

• fix: don't forward secure headers to 3th party by @​jimmywarting in node-fetch/node-fetch#1453

Full Changelog: node-fetch/node-fetch@v2.6.6...v2.6.7

v2.6.6

What's Changed

• fix(URL): prefer built in URL version when available and fallback to whatwg by @​jimmywarting in node-fetch/node-fetch#1352

Full Changelog: node-fetch/node-fetch@v2.6.5...v2.6.6

v2.6.2

fixed main path in package.json

v2.6.1

This is an important security release. It is strongly recommended to update as soon as possible.

See CHANGELOG for details.

v2.6.0

See CHANGELOG.

v2.5.0

See CHANGELOG.

v2.4.1

See CHANGELOG.

v2.4.0

See CHANGELOG.

v2.3.0

See CHANGELOG.

v2.2.1

See CHANGELOG.

Commits

• 1ef4b56 backport of #1449 (#1453)
• 8fe5c4e 2.x: Specify encoding as an optional peer dependency in package.json (#1310)
• f56b0c6 fix(URL): prefer built in URL version when available and fallback to whatwg (...
• b5417ae fix: import whatwg-url in a way compatible with ESM Node (#1303)
• 18193c5 fix v2.6.3 that did not sending query params (#1301)
• ace7536 fix: properly encode url with unicode characters (#1291)
• 152214c Fix(package.json): Corrected main file path in package.json (#1274)
• b5e2e41 update version number
• 2358a6c Honor the size option after following a redirect and revert data uri support
• 8c197f8 docs: Fix typos and grammatical errors in README.md (#686)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by endless, a new releaser for node-fetch since your current version.

Updates graphql-request from 1.8.2 to 6.0.0

Release notes

Sourced from graphql-request's releases.

6.0.0

BREAKING CHANGES

• 02a5522 remove file uploads feature (#501)
• 702ef92 bring TS 5 support (#480)

Features

• 02a5522 (breaking) remove file uploads feature (#501)
• 702ef92 (breaking) bring TS 5 support (#480)

Fixes

• 8a98925 change event handlers registration style (#474)

Improvements

• 5ce990a refactor: remove default syntax
• fee4476 refactor: ref passthrough
• 8467a26 refactor: rename internal type
• b563ad5 refactor: lint

Chores

• 277bad5 update dependency @​vitest/coverage-c8 to ^0.30.0 (#503)
• 4a4e85b update pnpm to v8.2.0 (#505)
• c201325 update dependency vitest to ^0.30.0 (#504)
• 37c5cc2 check docs build on pr ci (#502)
• 82e0050 lint PRs (#498)
• e596527 make use of gql tag
• a446365 update dev deps to latest
• 3ed6436 use prisma eslint config
• c697c5a format
• 8814eb8 enable stale bot
• 43a2601 consolidate content under knowledge base section
• b15e948 update pnpm to v8.1.1 (#494)
• bdebdc7 update dependency happy-dom to v9 (#492)
• 38fda1d update pnpm to v8.1.0 (#490)
• 6c49ead update pnpm to v8 (#488)
• c7f8212 update pnpm to v7.30.5 (#487)
• b520745 update pnpm to v7.30.3 (#486)
• 413bdff update pnpm to v7.30.1 (#485)
• 9866249 update pnpm to v7.30.0 (#483)
• b712346 update pnpm to v7.29.3 (#479)
• be7e6b2 make runs faster (#478)
• 6ba1648 update pnpm to v7.29.1 (#476)
• b18227e troubleshooting for React Native + Metro projects (#475)
• 2d35a7b update pnpm to v7.29.0 (#470)

5.2.0

... (truncated)

Commits

• 277bad5 chore(deps): update dependency @​vitest/coverage-c8 to ^0.30.0 (#503)
• 4a4e85b chore(deps): update pnpm to v8.2.0 (#505)
• c201325 chore(deps): update dependency vitest to ^0.30.0 (#504)
• 37c5cc2 chore: check docs build on pr ci (#502)
• 02a5522 feat!: remove file uploads feature (#501)
• 5ce990a refactor: remove default syntax
• fee4476 refactor: ref passthrough
• 8467a26 refactor: rename internal type
• 82e0050 chore(ci): lint PRs (#498)
• b563ad5 refactor: lint
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by jasonkuhrt, a new releaser for graphql-request since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.