npm: bump ora from 3.4.0 to 4.0.2

[dependabot-preview]

Bumps ora from 3.4.0 to 4.0.2.

Release notes

Sourced from ora's releases.

v4.0.2

• Fix handling of Ctrl+C on spinners beyond first one (#131) 17761e9

sindresorhus/ora@v4.0.1...v4.0.2

v4.0.1

• Set the correct interval when changing spinner by name (#128) 4a8cd09

sindresorhus/ora@v4.0.0...v4.0.1

v4.0.0

Breaking

• Require Node.js 8 6459090
• Discard stdin by default (#112) b1f140b
  This prevents the spinner from twitching on input, outputting broken lines on Enter key presses, and prevents buffering of input while the spinner is running.

Breaking for TypeScript users

• Only use a CommonJS export for the TypeScript definition
  You need to change import ora from 'ora'; to import ora = require('ora');

Fixes

• Set the correct interval when changing spinner (#125) ad324dc
• Hide prefixText when it's an empty string (#124) 8bcde17
• Fix Typescript definition for the frame method (#126) b653b5a

sindresorhus/ora@v3.4.0...v4.0.0

Commits

• 974630f 4.0.2
• 17761e9 Fix handling of Ctrl+C on spinners beyond first one (#131)
• 8779c68 4.0.1
• 4a8cd09 Set the correct interval when changing spinner by name (#128)
• b4ed2e8 4.0.0
• 6459090 Require Node.js 8
• b1f140b Discard stdin by default (#112)
• 8bcde17 Hide prefixText when it's an empty string (#124)
• b653b5a Fix Typescript definition for the frame method (#126)
• ad324dc Set the correct interval when changing spinner (#125)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will not automatically merge this PR because it includes a major update to a production dependency.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

• Update frequency
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.