Bump extract-zip from 1.6.8 to 2.0.1

[dependabot]

Bumps extract-zip from 1.6.8 to 2.0.1.

Release notes

Sourced from extract-zip's releases.

2.0.1

Fixed

• stop using deprecated process.umask (#96)
• correct minimum Node version (>= 10.17.0) based on fs.promises stability (#105)

2.0.0

Changes

Added

• Promise-style API (#90)
• TypeScript definition (#92)

Changed

• Required Node 10.12 (#89). As a result, the mkdirp dependency was removed.
• Switched from concat-stream to get-stream (#90) to lower the number of transitive dependencies

Removed

• Callback-style API (#90)
• Support for Node < 10.12 (#89)

Internals

• Heavy refactors for code clarity
• Switched from tape to AVA for tests (#90)
• Switched from Travis CI to GitHub Actions
• Changed files are checked/fixed for lints via a pre-commit hook (#91)

Upgrade Guide

• This module has dropped support for versions of Node.js < 10.12.0.
• This module uses a Promise-based API instead of a callback-based API. If you still need to use a callback-based API, look into util.callbackify or similar functions.
• For TypeScript codebases, remove @types/extract-zip as a TypeScript definition is bundled with the module.

1.7.0

Added

• Error handler for zipfile object (#67)

Changed

• Don't pin dependency requirements to specific versions (#88)

Commits

• d641571 2.0.1
• 73f5065 build: don't package eslint config
• 30ee4e7 fix: correct minimum Node version based on fs.promises stability (#105)
• 7bef1ac build(deps-dev): upgrade eslint to ^7.2.0 & @typescript-eslint/* to ^3.2.0 (#...
• 93cf50a refactor: stop using deprecated process.umask (#96)
• d2b2bf8 build(ci): add Node.js 14 (#101)
• 946839d docs: fix example syntax (#100)
• eb3c1ed 2.0.0
• 27f3f85 feat: add TypeScript definition (#92)
• ef3995d build: lint ava tests (#91)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[JamieMagee]

@dependabot rebase

[JamieMagee]

The extract-zip 2.x API changed from callback-style to Promise-based. The current unzip() method passes a callback as the third argument, but 2.x ignores it and returns a Promise directly. This means the callback never fires and unzip() hangs indefinitely.

The fix is straightforward - just return the Promise from extract():

unzip(source, destination) {
  return extract(source, { dir: destination })
}