Bump minimatch from 5.1.6 to 5.1.9

[dependabot]

Bumps minimatch from 5.1.6 to 5.1.9.

Commits

• 4419b6e 5.1.9
• 383ce59 docs: add warning about ReDoS
• b02ef18 fix partial matching of globstar patterns
• e92ae29 5.1.8
• 79e4447 limit recursion for **, improve perf considerably
• 85ec0ff lockfile update
• 647146e lock node version to 14
• 85646c8 5.1.7
• 977c2d8 update CI matrix and actions
• 421ad12 update test expectations for coalesced consecutive stars
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

[snyk-io]

✅ Snyk checks have passed. No issues have been found so far.

Status	Scanner	Critical	High	Medium	Low	Total (0)
✅	Open Source Security	0	0	0	0	0 issues
✅	Licenses	0	0	0	0	0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

[hivel-marco]

PR Complexity Score: 1.2 - Trivial

View Breakdown

• Lines Changed: 6
• Files Changed: 1
• Complexity Added: 0
• Raw Score: 3.12

⚠️ Sensitive Data (PII/ Secrets) Detected

File	Types	Count
package-lock.json Line Type Preview 798 Secret: Base64 High Entropy String [Base64 High Entropy String]	Base64 High Entropy String	1

Overview

This PR updates the pinned version of the minimatch dependency in the lockfile.
The purpose is to align the project with the newer 5.1.9 release, likely for bug fixes or security/compatibility improvements.
Only the lockfile (package-lock.json) is affected, with no direct source code changes.

Key Changes

• Bumped minimatch from version 5.1.6 to 5.1.9 in package-lock.json to pick up the latest patch-level updates.
• Updated the corresponding resolved tarball URL and integrity hash to match the new minimatch version.

Risks & Considerations

• Potential behavior changes in minimatch between 5.1.6 and 5.1.9 could subtly affect any tooling or scripts that rely on glob matching.
• Downstream issues may arise if other dependencies have undocumented assumptions about specific minimatch behavior, so running the full test suite after this update is advisable.

File-level change summary

File	Change summary
package-lock.json	Updated the locked minimatch package to version 5.1.9.