Bump terser from 4.3.9 to 5.0.0

[dependabot-preview]

Bumps terser from 4.3.9 to 5.0.0.

Changelog

Sourced from terser's changelog.

v5.0.0

• in operator now taken into account during property mangle.
• Fixed infinite loop in face of a reference loop in some situations.
• Kept exports and imports around even if there's something which will throw before them.
• The main exported bundle for commonjs, dist/bundle.min.js is no longer minified.

v5.0.0-beta.0

• BREAKING: minify() is now async and rejects a promise instead of returning an error.
• BREAKING: Internal AST is no longer exposed, so that it can be improved without releasing breaking changes.
• BREAKING: Lowest supported node version is 10
• Module is now distributed as a dual package - You can import and require() too.
• Inline improvements were made

v4.8.0

• Support for numeric separators (million = 1_000_000) was added.
• Assigning properties to a class is now assumed to be pure.
• Fixed bug where yield wasn't considered a valid property key in generators.

v4.7.0

• A bug was fixed where an arrow function would have the wrong size
• arguments object is now considered safe to retrieve properties from (useful for length, or 0) even when pure_getters is not set.
• Fixed erroneous const declarations without value (which is invalid) in some corner cases when using collapse_vars.

v4.6.13

• Fixed issue where ES5 object properties were being turned into ES6 object properties due to more lax unicode rules.
• Fixed parsing of BigInt with lowercase e in them.

v4.6.12

• Fixed subtree comparison code, making it see that [1,[2, 3]] is different from [1, 2, [3]]
• Printing of unicode identifiers has been improved

v4.6.11

• Read unused classes' properties and method keys, to figure out if they use other variables.
• Prevent inlining into block scopes when there are name collisions
• Functions are no longer inlined into parameter defaults, because they live in their own special scope.
• When inlining identity functions, take into account the fact they may be used to drop this in function calls.
• Nullish coalescing operator (x ?? y), plus basic optimization for it.
• Template literals in binary expressions such as + have been further optimized

v4.6.10

• Do not use reduce_vars when classes are present

Commits

• aacd577 5.0.0
• 262a813 update changelog
• 9dab78c npm audit fix
• c1fc7c4 fix yield tests
• 9254d2c check for source-map option before reading it in CLI
• 5f7b4a1 take in operator into account in property mangling. Closes #748
• 3178c3b fix bug with eval and reference loop. Closes #741
• e997c10 leave import/export around in unreachable code. Closes #718
• 05261a0 add missing main file
• 9b3f851 update typings
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will not automatically merge this PR because it includes a major update to a production dependency.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

[dependabot-preview]

Superseded by #115.