Update dependency canvas to v2.8.0

[mend-for-github-com]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
canvas	2.6.1 -> 2.8.0

By merging this PR, the below vulnerabilities will be automatically resolved:

Severity	CVSS Score	CVE	Reachability
Critical	9.8	CVE-2021-44906
High	8.8	CVE-2022-0355
High	8.2	CVE-2021-32803
High	8.2	CVE-2021-32804
High	8.2	CVE-2021-37701
High	8.2	CVE-2021-37712
High	8.2	CVE-2021-37713
High	7.3	CVE-2020-7788
Medium	5.3	CVE-2022-25883
Low	3.7	CVE-2017-16137

---

Release Notes

Automattic/node-canvas (canvas)

v2.8.0

Compare Source

==================

Changed

• Upgrade dtslint
• Upgrade node-pre-gyp to 1.0.0. Note that if you are using special node-pre-gyp
  features like node_pre_gyp_accessKeyId, you may need to make changes to your
  installation procedure. See https://github.com/mapbox/node-pre-gyp/blob/master/CHANGELOG.md#100.
• Add Node.js v16 to CI.
• The C++ class method nBytes() now returns a size_t. (Because this is a C++
  method only, this is not considered a breaking change.)

Added

• Add support for inverse() and invertSelf() to DOMMatrix (#​1648)
• Add support for context.getTransform() (#​1769)
• Add support for context.setTransform(dommatrix) (#​1769)

Fixed

• Fix actualBoundingBoxLeft and actualBoundingBoxRight returned by measureText to be the ink rect (#​1776, fixes #​1703).
• Fix Pango logging "expect ugly output" on Windows (#​1643)
• Fix benchmark for createPNGStream (#​1672)
• Fix dangling reference in BackendOperationNotAvailable exception (#​1740)
• Fix always-false comparison warning in Canvas.cc.
• Fix Node.js crash when throwing from an onload or onerror handler.

v2.7.0

Compare Source

==================

Changed

• Switch CI to Github Actions. (Adds Windows and macOS builds.)
• Switch prebuilds to GitHub actions in the Automattic/node-canvas repository.
  Previously these were in the node-gfx/node-canvas-prebuilt
  and triggered manually.
• Speed up fillStyle= and strokeStyle=

Added

• Export rsvgVersion.
• CanvasPattern’s setTransform method is no longer missing

Fixed

• Fix BMP issues. (#​1497)
• Update typings to support jpg and addPage on NodeCanvasRenderingContext2D (#​1509)
• Fix assertion failure when using Visual Studio Code debugger to inspect Image prototype (#​1534)
• Fix signed/unsigned comparison warning introduced in 2.6.0, and function cast warnings with GCC8+
• Fix to compile without JPEG support (#​1593).
• Fix compile errors with cairo
• Fix Image#complete if the image failed to load.
• Upgrade node-pre-gyp to v0.15.0 to use latest version of needle to fix error when downloading prebuilds.
• Don't throw if fillStyle or strokeStyle is set to an object, but that object is not a Gradient or Pattern. (This behavior was non-standard: invalid inputs are supposed to be ignored.)

---

• If you want to rebase/retry this PR, check this box

[amplify-bot]

Check Name	Conclusion	Summary	Output
Mend Security Check	failure	Security Report	output
Mend License Check	success	License Report	output