build(deps): bump braces and xo

[dependabot]

Bumps braces to 3.0.3 and updates ancestor dependency xo. These dependencies need to be updated together.

Updates braces from 3.0.2 to 3.0.3

Commits

• 74b2db2 3.0.3
• 88f1429 update eslint. lint, fix unit tests.
• 415d660 Snyk js braces 6838727 (#40)
• 190510f fix tests, skip 1 test in test/braces.expand
• 716eb9f readme bump
• a5851e5 Merge pull request #37 from coderaiser/fix/vulnerability
• 2092bd1 feature: braces: add maxSymbols (https://github.com/micromatch/braces/issues/...
• 9f5b4cf fix: vulnerability (https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727)
• 98414f9 remove funding file
• 665ab5d update keepEscaping doc (#27)
• Additional commits viewable in compare view

Updates xo from 0.39.1 to 0.58.0

Release notes

Sourced from xo's releases.

v0.58.0

• TypeScript: Disable default-case rule to avoid conflict with stricter @typescript-eslint/switch-exhaustiveness-check rule

xojs/xo@v0.57.0...v0.58.0

v0.57.0

Breaking

• Require Node.js 18 3b9d372

New rules

• logical-assignment-operators
• prefer-object-has-own
• object-curly-newline
• unicorn/no-unnecessary-polyfills
• @typescript-eslint/prefer-find
• @typescript-eslint/no-array-delete
• @typescript-eslint/prefer-promise-reject-errors

xojs/xo@v0.56.0...v0.57.0

v0.56.0

• Support additional TypeScript extensions (.mts, .cts) (#728) 04552b8

xojs/xo@v0.55.1...v0.56.0

v0.55.1

• Lock down eslint-plugin-import dependency to patch versions only 0a71db5

xojs/xo@v0.55.0...v0.55.1

v0.55.0

Breaking

• Require Node.js 16 004e3b3

New rules

• unicorn/prefer-blob-reading-methods
• @typescript-eslint/no-unsafe-enum-comparison

xojs/xo@v0.54.2...v0.55.0

v0.54.2

• Update dependencies (#715) 498aece

xojs/xo@v0.54.1...v0.54.2

v0.54.1

... (truncated)

Commits

• 1245088 0.58.0
• 7ff4d6c Update dependencies
• f70e240 0.57.0
• 3b9d372 Require Node.js 18
• 71857a0 Update tsconfig project link (#744)
• 80cbef4 Document TypeScript extensions (#740)
• 37e1458 0.56.0
• 04552b8 Add new TypeScript extensions (.mts, .cts) (#728)
• ff4b5d8 0.55.1
• 0a71db5 Lock down eslint-plugin-import dependency to patch versions only
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

[github-actions]

🎉 This PR is included in version 7.0.0 🎉

The release is available on:

• npm package (@latest dist-tag)
• GitHub release

Your semantic-release bot 📦🚀

[travi]

@dependabot rebase

[dependabot]

Looks like these dependencies are no longer a dependency, so this is no longer needed.