Bump xregexp from 4.3.0 to 5.1.2 in /backend

[dependabot]

Bumps xregexp from 4.3.0 to 5.1.2.

Release notes

Sourced from xregexp's releases.

v5.1.2

Bug Fixes

• Fix prototype pollution vulnerability in pattern caches: #362

v5.1.1

Improvements

• Support and defer to native /d flag in ES2021 environments
• Upgrade to Unicode 14.0.0 final
• Remove zuul as devDependency

Bug Fixes

• Fix types path in package.json
• Minor docs fixes

v5.1.0

Breaking Changes

• XRegExp.matchRecursive: When doing a global, non-sticky search and providing valueNames, return an empty array if no matches are found, rather than an array with one object containing a between value that contains the whole target string (this change is to match every other case when no matches are found, e.g. when not providing valueNames, not using global with flag g, or doing a sticky search with flag y): 6e1711e

Improvements

• XRegExp.matchRecursive: Add support for matching with unbalanced delimiters (new unbalanced option with supported values 'error' [default], 'skip', and 'skip-lazy'): #96
• Upgrade to Unicode 14.0.0: 0f52a62

v5.0.2

• Fix TypeScript definition for XRegExp.matchChain: #325
• Fix XRegExp.escape to handle -, ,, and # in a way that is compatible with ES6 flag u: #323

v5.0.1

• Hotfix for broken npm package.
• Adds docs folder with extensive documentation.

v5.0.0

Breaking Changes

• Enable the namespacing feature by default for alignment with ES2018 (moves named capture properties to the groups object of matches and to the last argument of replacement callbacks): slevithan/xregexp#316
• Handle ES2018 capture names (mostly this adds support for an extended set of Unicode characters, but it also prevents using a number as the first character in a capture name): slevithan/xregexp#247
• Remove support for Unicode blocks, for alignment with ES2018 (use Unicode scripts instead): slevithan/xregexp#225

Improvements

• Support optional 'Script=' prefix (from ES2018 syntax) for Unicode script tokens: slevithan/xregexp#225
• XRegExp.matchRecursive: Add delimiter and position info to error when unbalanced delimiters are found: slevithan/xregexp#293
• Avoid inserting unneeded (?:) into native regex source in more cases: slevithan/xregexp@076f950 and slevithan/xregexp@d78a262
• Defer to native flag s in ES2018 environments: slevithan/xregexp@98abea8

Bug Fixes

• XRegExp.exec: Preserve the groups object that comes from native ES2018 named capture: slevithan/xregexp@c4a83e7

... (truncated)

Commits

• cd10b7d v5.1.2
• a5d463a Bump dependencies
• 838ce76 Fix prototype pollution vuln in pattern caches (fixes #362)
• 4b4428c Bump dependencies
• 78f4b63 Readme: Badges
• f18ecf0 Tweak promo
• 70416fd Promote lib regex
• fdabf1d Node 20 for GitHub actions
• 37f22d0 Update Jasmine browser runner
• 96027dc Remove dtslint and bump dependency versions
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)