Bump dotenv from 16.4.5 to 16.4.7 (#231)

Bumps [dotenv](https://github.com/motdotla/dotenv) from 16.4.5 to
16.4.7.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md">dotenv's
changelog</a>.</em></p>
<blockquote>
<h2><a
href="https://github.com/motdotla/dotenv/compare/v16.4.6...v16.4.7">16.4.7</a>
(2024-12-03)</h2>
<h3>Changed</h3>
<ul>
<li>Ignore <code>.tap</code> folder when publishing. (oops, sorry about
that everyone. - <a
href="https://github.com/motdotla"><code>@​motdotla</code></a>) <a
href="https://redirect.github.com/motdotla/dotenv/pull/848">#848</a></li>
</ul>
<h2><a
href="https://github.com/motdotla/dotenv/compare/v16.4.5...v16.4.6">16.4.6</a>
(2024-12-02)</h2>
<h3>Changed</h3>
<ul>
<li>Clean up stale dev dependencies <a
href="https://redirect.github.com/motdotla/dotenv/pull/847">#847</a></li>
<li>Various README updates clarifying usage and alternative solutions
using <a href="https://github.com/dotenvx/dotenvx">dotenvx</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/motdotla/dotenv/commit/a338d68264b00fafd1730233ff04127228908e9c"><code>a338d68</code></a>
16.4.7</li>
<li><a
href="https://github.com/motdotla/dotenv/commit/daf3e3d5cc3bc220c4dd14a540d4382c5fd5e750"><code>daf3e3d</code></a>
changelog 🪵</li>
<li><a
href="https://github.com/motdotla/dotenv/commit/fb74f6809fd4f7a5a0e45dac2e6e2d664de3b812"><code>fb74f68</code></a>
Merge pull request <a
href="https://redirect.github.com/motdotla/dotenv/issues/848">#848</a>
from Spice-King/patch-1</li>
<li><a
href="https://github.com/motdotla/dotenv/commit/fe87ba23b5098eb6ea86d3fdbdb773e83cf5662f"><code>fe87ba2</code></a>
Add .tap to .npmignore</li>
<li><a
href="https://github.com/motdotla/dotenv/commit/0c9f764c66f291a418185068eef2b13e2ec840b0"><code>0c9f764</code></a>
16.4.6</li>
<li><a
href="https://github.com/motdotla/dotenv/commit/fd5f26b6c726142d7c3365ab3ce628765db74bd6"><code>fd5f26b</code></a>
changelog 🪵</li>
<li><a
href="https://github.com/motdotla/dotenv/commit/bb19b6bb55abb3dbed3e183557f4198bad3a6a3f"><code>bb19b6b</code></a>
Merge pull request <a
href="https://redirect.github.com/motdotla/dotenv/issues/847">#847</a>
from motdotla/deps-updates</li>
<li><a
href="https://github.com/motdotla/dotenv/commit/2f4e36bbe2a0ad42f9b3736bbd19f6cda146b381"><code>2f4e36b</code></a>
further dev dependency cleanup</li>
<li><a
href="https://github.com/motdotla/dotenv/commit/c2fdd0169d1d833d1d3dba7752f3f0a52b5ec4b0"><code>c2fdd01</code></a>
send to codecov</li>
<li><a
href="https://github.com/motdotla/dotenv/commit/6707487b9e4070e7769048c75e769ba504bb84e1"><code>6707487</code></a>
add test coverage</li>
<li>Additional commits viewable in <a
href="https://github.com/motdotla/dotenv/compare/v16.4.5...v16.4.7">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dotenv&package-manager=npm_and_yarn&previous-version=16.4.5&new-version=16.4.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Author: dependabot[bot]

package-lock.json

@@ -21,7 +21,7 @@
     "browser-sync": "^3.0.3",
     "client-sessions": "^0.8.0",
     "cookie-parser": "^1.4.7",
-    "dotenv": "^16.4.5",
+    "dotenv": "^16.4.7",
     "express": "^4.21.2",
     "express-session": "^1.18.1",
     "gulp": "^5.0.0",