Update dependency async to v3.2.2 [SECURITY]

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
async (source)	3.1.0 → 3.2.2

GitHub Vulnerability Alerts

CVE-2021-43138

A vulnerability exists in Async through 3.2.1 for 3.x and through 2.6.3 for 2.x (fixed in 3.2.2 and 2.6.4), which could let a malicious user obtain privileges via the mapValues() method.

---

Release Notes

caolan/async (async)

v3.2.2

Compare Source

• Fix potential prototype pollution exploit

v3.2.1

Compare Source

• Use queueMicrotask if available to the environment (#​1761)
• Minor perf improvement in priorityQueue (#​1727)
• More examples in documentation (#​1726)
• Various doc fixes (#​1708, #​1712, #​1717, #​1740, #​1739, #​1749, #​1756)
• Improved test coverage (#​1754)

v3.2.0

Compare Source

• Fix a bug in Safari related to overwriting func.name
• Remove built-in browserify configuration (#​1653)
• Varios doc fixes (#​1688, #​1703, #​1704)

v3.1.1

Compare Source

• Allow redefining name property on wrapped functions.

---

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.