Bump snyk from 1.94.0 to 1.99.0

[dependabot-preview]

Bumps snyk from 1.94.0 to 1.99.0.

Release notes

Sourced from snyk's releases.

v1.99.0

1.99.0 (2018-09-25)

Features

• upgrade maven, gradle and SBT plugins to reduce payload size (6b54007)

v1.98.0

1.98.0 (2018-09-25)

Bug Fixes

• better error messaging for wizard without node_modules (45d892e)

Features

• add yarn.lock support (08d6248)

v1.97.1

1.97.1 (2018-09-23)

Bug Fixes

• bump needle to ^2.2.4 to fix bug with node 8.12.0 (79a8992)

v1.97.0

1.97.0 (2018-09-21)

Features

• add typescript support (75961b7)

v1.96.0

1.96.0 (2018-09-18)

Features

• upgrade snyk-docker-plugin (4353b9f)

v1.95.3

1.95.3 (2018-09-09)

Bug Fixes

... (truncated)

Commits

• 1b5ae22 Merge pull request #224 from snyk/feat/upgrade-maven-sbt-gradle-plugins
• 6b54007 feat: upgrade maven, gradle and SBT plugins to reduce payload size
• 4ba7ad4 Merge pull request #221 from snyk/feat/add-yarn-lock-support
• 45d892e fix: better error messaging for wizard without node_modules
• 142379b Merge pull request #222 from snyk/fix/bump-needle
• 79a8992 fix: bump needle to ^2.2.4 to fix bug with node 8.12.0
• da3d92c test: verify behaviour on node 4
• 08d6248 feat: add yarn.lock support
• d0a19b3 test: yarn.lock coverage
• 95144e8 chore: update lockfile parser version
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge
• @dependabot reopen will reopen this PR if it is closed
• @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

[Pomax]

CI doesn't break,, that's all I care about for this package.