chore(deps): update dependency pygments to v2.7.4

[dev-mend-for-github.lhy31512.workers.dev]

This PR contains the following updates:

Package	Update	Change
pygments (changelog)	minor	==2.6.1 -> ==2.7.4

By merging this PR, the issue #38 will be automatically resolved and closed:

Severity	CVSS Score	CVE	Reachability
High	7.5	CVE-2021-20270
High	7.5	CVE-2021-27291

---

Release Notes

pygments/pygments (pygments)

v2.7.4

Compare Source

(released January 12, 2021)

• Updated lexers:

  • Apache configurations: Improve handling of malformed tags (#​1656)

  • CSS: Add support for variables (#​1633, #​1666)

  • Crystal (#​1650, #​1670)

  • Coq (#​1648)

  • Fortran: Add missing keywords (#​1635, #​1665)

  • Ini (#​1624)

  • JavaScript and variants (#​1647 -- missing regex flags, #​1651)

  • Markdown (#​1623, #​1617)

  • Shell

    • Lex trailing whitespace as part of the prompt (#​1645)
    • Add missing in keyword (#​1652)

  • SQL - Fix keywords (#​1668)

  • Typescript: Fix incorrect punctuation handling (#​1510, #​1511)

• Fix infinite loop in SML lexer (#​1625), CVE-2021-20270 <https://nvd.nist.gov/vuln/detail/CVE-2021-20270>_

• Fix backtracking string regexes in JavaScript/TypeScript, Modula2
  and many other lexers (#​1637) CVE-2021-27291 <https://nvd.nist.gov/vuln/detail/CVE-2021-27291>_

• Limit recursion with nesting Ruby heredocs (#​1638)

• Fix a few inefficient regexes for guessing lexers

• Fix the raw token lexer handling of Unicode (#​1616)

• Revert a private API change in the HTML formatter (#​1655) --
  please note that private APIs remain subject to change!

• Fix several exponential/cubic-complexity regexes found by
  Ben Caller/Doyensec (#​1675)

• Fix incorrect MATLAB example (#​1582)

Thanks to Google's OSS-Fuzz project for finding many of these bugs.

v2.7.3

Compare Source

(released December 6, 2020)

• Updated lexers:

  • Ada (#​1581)
  • HTML (#​1615, #​1614)
  • Java (#​1594, #​1586)
  • JavaScript (#​1605, #​1589, #​1588)
  • JSON (#​1569 -- this is a complete rewrite)
  • Lean (#​1601)
  • LLVM (#​1612)
  • Mason (#​1592)
  • MySQL (#​1555, #​1551)
  • Rust (#​1608)
  • Turtle (#​1590, #​1553)

• Deprecated JsonBareObjectLexer, which is now identical to JsonLexer (#​1600)

• The ImgFormatter now calculates the exact character width, which fixes some issues with overlapping text (#​1213, #​1611)

• Documentation fixes (#​1609, #​1599, #​1598)

• Fixed duplicated Juttle language alias (#​1604, #​1606)

• Added support for Kotlin scripts (#​1587)

• Removed CSS rule which forced margin to 0

v2.7.2

Compare Source

(released October 24, 2020)

• Updated lexers:

  • Latex (#​1517, #​1516)
  • LLVM (#​1565)
  • SPARQL (#​1559)

• Fix Python console/traceback lexer problems with custom exceptions without messages (#​1548)

• Allow loading ttc fonts on Mac/image formatter (#​1223)

• Improve analyze_text across a variety of lexers (#​1549)

• Remove CSS rule which forced the vertical padding to 0 for line numbers (#​1583, #​1579)

• Fix TNTLexer crashing on unexpected EOL (#​1568, #​1570)

• regexlint can be now run locally as part of tox tests (#​1557)

• Fix typos (#​1550, #​1562)

• Add Python 3.9 as a supported version (#​1554)

v2.7.1

Compare Source

(released September 16, 2020)

• Fixed a regression in the JSON lexer (#​1544)

v2.7.0

Compare Source

(released September 12, 2020)

• Added lexers:

  • Arrow (#​1481, #​1499)
  • BARE (#​1488)
  • Devicetree (#​1434)
  • F* (#​1409)
  • GDScript (#​1457)
  • Pointless (#​1494)
  • PromQL (#​1506)
  • PsySH (#​1438)
  • Singularity (#​1285)
  • TiddlyWiki5 (#​1390)
  • TNT (#​1414)
  • YANG (#​1408, #​1428)

• Updated lexers:

  • APL (#​1503)
  • C++ (#​1350, which also fixes: #​1222, #​996, #​906, #​828, #​1162, #​1166,
    #​1396)
  • Chapel (#​1423)
  • CMake (#​1491)
  • CSound (#​1509)
  • Cython (#​1507)
  • Dart (#​1449)
  • Fennel (#​1535)
  • Fortran (#​1442)
  • GAS (#​1530)
  • HTTP (#​1432, #​1520, #​1521)
  • Inform 6 (#​1461)
  • Javascript (#​1533)
  • JSON (#​1065, #​1528)
  • Lean (#​1415)
  • Matlab (#​1399)
  • Markdown (#​1492, #​1495)
  • MySQL (#​975, #​1063, #​1453, #​1527)
  • NASM (#​1465)
  • Nim (#​1426)
  • PostgreSQL (#​1513)
  • PowerShell (#​1398, #​1497)
  • Protobuf (#​1505)
  • Robot (#​1480)
  • SQL (#​1402)
  • SystemVerilog (#​1436, #​1452, #​1454, #​1460, #​1462, #​1463, #​1464, #​1471, #​1496, #​1504)
  • TeraTerm (#​1337)
  • XML (#​1502)

• Added a new filter for math symbols (#​1406)

• The Kconfig lexer will match Kconfig derivative names now (#​1458)

• Improved HTML formatter output (#​1500)

• .markdown is now recognized as an extension for Markdown files (#​1476)

• Fixed line number colors for Solarized (#​1477, #​1356)

• Improvements to exception handling (#​1478)

• Improvements to tests (#​1532, #​1533, #​1539)

• Various code cleanups (#​1536, #​1537, #​1538)

---

• If you want to rebase/retry this PR, check this box