Update dependency superagent to v4

[mend-for-github-com]

This PR contains the following updates:

Package	Type	Update	Change
superagent	dependencies	major	^3.0.0 -> ^4.0.0

By merging this PR, the below issues will be automatically resolved and closed:

Severity	CVSS Score	CVE	GitHub Issue
High	7.5	CVE-2022-25901	#198

---

Release Notes

ladjs/superagent (superagent)

v4.0.0

Compare Source

Breaking changes

• Node.js v4 has reached it's end of life, so we no longer support it. It's v6+ or later. We recommend Node.js 10.
• We now use ES6 in the browser code, too.
  • If you're using Browserify or Webpack to package code for Internet Explorer, you will also have to use Babel.
  • The pre-built node_modules/superagent.js is still ES5-compatible.
• .end(…) returns undefined instead of the request. If you need the request object after calling .end() (and you probably don't), save it in a variable and call request.end(…). Consider not using .end() at all, and migrating to promises by calling .then() instead.
• In Node, responses with unknown MIME type are buffered by default. To get old behavior, if you use custom unbuffered parsers, add .buffer(false) to requests or set superagent.buffer[yourMimeType] = false.
• Invalid uses of .pipe() throw.

Minor changes

• Throw if req.abort().end() is called
• Throw if using unsupported mix of send and field
• Reject .end() promise on all error events (Kornel Lesiński)
• Set https.servername from the Host header (Kornel Lesiński)
• Leave backticks unencoded in query strings where possible (Ethan Resnick)
• Update node-mime to 2.x (Alexey Kucherenko)
• Allow default buffer settings based on response-type (shrey)
• response.buffered is more accurate.

v3.8.3

Compare Source

• Add flags for 201 & 422 responses (Nikhil Fadnis)
• Emit progress event while uploading Node Buffer via send method (Sergey Akhalkov)
• Fixed setting correct cookies for redirects (Damien Clark)
• Replace .catch with ['catch'] for IE9 Support (Miguel Stevens)

v3.8.2

Compare Source

• Fixed handling of exceptions thrown from callbacks
• Stricter matching of +json MIME types.

v3.8.1

Compare Source

• Clear authorization header on cross-domain redirect

v3.8.0

Compare Source

• Added support for "globally" defined headers and event handlers via superagent.agent(). It now remembers default settings for all its requests.
• Added optional callback to .retry() (Alexander Murphy)
• Unified auth args handling in node/browser (Edmundo Alvarez)
• Fixed error handling in zlib pipes (Kornel)
• Documented that 3xx status codes are errors (Mickey Reiss)

v3.7.0

Compare Source

• Limit maximum response size. Prevents zip bombs (Kornel)
• Catch and pass along errors in .ok() callback (Jeremy Ruppel)
• Fixed parsing of XHR headers without a newline (nsf)

---

• If you want to rebase/retry this PR, check this box