Update dependencies to fix security vulnerabilities reported by Snyk

[Holubinka]

Hi,

While using grunt@1.6.1, we ran a snyk test and found security vulnerabilities.

✗ Medium severity vulnerability found in inflight
  Description: Missing Release of Resource after Effective Lifetime
  Info: https://security.snyk.io/vuln/SNYK-JS-INFLIGHT-6095116
  Introduced through: glob@7.1.7
  From: glob@7.1.7 > inflight@1.0.6

Thanks for developing grunt!

[HolgerJeromin]

This is more pressing now, as npm audit is unhappy since a few hours: GHSA-mh29-5h37-fv8m

npm audit suggests a version without that dependency which is grunt from 2012 :-D

$>npm audit report

js-yaml  <4.1.1
Severity: moderate
js-yaml has prototype pollution in merge (<<) - https://github.com/advisories/GHSA-mh29-5h37-fv8m
fix available via `npm audit fix --force`
Will install grunt@0.3.17, which is a breaking change
node_modules/grunt/node_modules/js-yaml
node_modules/js-yaml
  grunt  >=0.4.0-a
  Depends on vulnerable versions of js-yaml
  node_modules/grunt
....

[HolgerJeromin]

My problem is fixed by js-yaml release 3.14.2
nodeca/js-yaml@3.14.1...3.14.2