Bump tough-cookie and svg-sprite

[dependabot]

Removes tough-cookie. It's no longer used after updating ancestor dependency svg-sprite. These dependencies need to be updated together.

Removes tough-cookie

Updates svg-sprite from 1.5.2 to 2.0.2

Release notes

Sourced from svg-sprite's releases.

v2.0.2

• Fix svg-sprite/svg-sprite#740 for real, PR svg-sprite/svg-sprite#755

v2.0.1

• fix(docs): fix incorrect type annotation svg-sprite/svg-sprite#743
• Fix shape.id.separator regression svg-sprite/svg-sprite#745

v2.0.0

Breaking changes

• Drop Node.js < 12 support
• Update svgo to v2.x

Changes

• Add namespaceIDPrefix option
• Add rel="noopener noreferrer" to all links in generated HTML pages.
• Add compileAsync method
• Add support for disabling root viewBox attribute in stack mode
• Add ID references substitution in href attributes (earlier worked with xlink:href only)
• Drop Node.js < 12 support
• Remove the deprecated config.transform option
• Add milliseconds in logger's output
• Change SVG dimensions calculation from PhantomJS to resvg-js, drop PhantomJ direct dependency (replaced with resvg-js)
• Fix a rare issue with valid SVG files marked as invalid
• Fix a rare bug with checking if passed config.log option is an instance of winston.Logger
• Fix missing shape names when adding input files with a relative path
• Replace cssmin with csso
• Reduce lodash and other direct dependencies; switch to native JS alternatives

Dev updates

• Update all devDepedencies
• Switch to xo for linting
• Replace mocha, should and c8 with jest
• Replace PhantomJS and image-diff with playwright and pixelmatch for regression tests
• A lot of docs tweaks
• A lot of code refactoring
  • Switch to ES6+ syntax and methods
  • Switch to async methods whenever possible
  • Switch to ES6 classes whenever possible
  • Fix JSDoc documentation
• Massively improve tests
  • Add regression tests for SVGs without dimensions
  • Add regression tests for all modes
  • Add tests and coverage reports to CI (Linux, Windows support)

Full Changelog: https://github.com/svg-sprite/svg-sprite/compare/v1.5.4...v2.0.0?w=1

v2.0.0-beta7

... (truncated)

Changelog

Sourced from svg-sprite's changelog.

Newer release notes are published on the GitHub release page: https://github.com/svg-sprite/svg-sprite/releases

---

1.6.0-alpha Maintenance pre-release (2020-01-18)

• Remove support for Node < 8.0
• Update dependencies (#306, #310)
• Update documentation to use updated SVGO plugin name (#275)
• Move mocha and should dependencies back to devDependencies again (#297, #285)
• Add built-in templating function to encode hash signs (#294)
• Fix verbose logging output (#279, #291)
• Add option to prefix auto-generated namespace IDs (#292, #293)
• Update preview templates to use SVG checker image (#287)

1.5.0 Maintenance release (2018-09-18)

• Updated dependencies
• Dropped support for Node.js < 6.4

1.4.1 Maintenance release (2018-09-18)

• Updated dependencies (#276, #277)

1.4.0 Maintenance release (2018-03-17)

• Added more Node.js versions to Travis instructions
• Updated dependencies
• Updated SVGO version & test fixture (#258, #259)
• Reformatted documentation code examples (#236)
• Fix JSHint errors (#261)
• Add support for simple shape ID generator (#240)
• Add failing CPU detection workaround (#252)
• Changed SVGO plugin defaults (#249)

1.3.7 Bugfix release (2017-06-01)

• Updated dependencies
• Fixed invalid markup in <defs> example html (#229)
• Fallback for failing CPU detection (#217)
• Fixed broken SVGO configuration in CLI (#216, #199)
• Added glob base directory option to CLI (#220)
• Fixed broken rootAttributes option in CLI (#228)

1.3.6 Bugfix release (2016-08-29)

• Updated dependencies
• Fixed LESS template mixin call (#187)
• Fixed broken keyframe animation support ([gulp-svg-sprite #63](svg-sprite/gulp-svg-sprite#63))

... (truncated)

Commits

• b78b49c 2.0.2
• 9c1fcc9 Replaced fake Vinyl files with the real ones
• 10e2d99 Fixed shape tests
• ad45cd5 Revert "Use the path methods when possible (#426)"
• a9d48c1 Partially revert "Fix shape.id.separator regression (#745)"
• 37e6568 2.0.1
• e1ecefe Fix shape.id.separator regression (#745)
• 1812642 fix(docs): fix incorrect type annotation
• 5bb3c2f build(deps): bump @​xmldom/xmldom from 0.8.2 to 0.8.3
• d5031aa 2.0.0
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.