[dependency]: bump the faucet-authenticator-dependencies group in /faucet/authenticator with 2 updates

[dependabot]

Bumps the faucet-authenticator-dependencies group in /faucet/authenticator with 2 updates: dotenv and supertest.

Updates dotenv from 17.0.1 to 17.2.0

Changelog

Sourced from dotenv's changelog.

17.2.0 (2025-07-09)

Added

• Optionally specify DOTENV_CONFIG_QUIET=true in your environment or .env file to quiet the runtime log (#889)
• Just like dotenv any DOTENV_CONFIG_ environment variables take precedence over any code set options like ({quiet: false})

# .env
DOTENV_CONFIG_QUIET=true
HELLO="World"

// index.js
require('dotenv').config()
console.log(`Hello ${process.env.HELLO}`)

$ node index.js
Hello World
or
$ DOTENV_CONFIG_QUIET=true node index.js

17.1.0 (2025-07-07)

Added

• Add additional security and configuration tips to the runtime log (#884)
• Dim the tips text from the main injection information text

const TIPS = [
  '🔐 encrypt with dotenvx: https://dotenvx.com',
  '🔐 prevent committing .env to code: https://dotenvx.com/precommit',
  '🔐 prevent building .env in docker: https://dotenvx.com/prebuild',
  '🛠️  run anywhere with `dotenvx run -- yourcommand`',
  '⚙️  specify custom .env file path with { path: \'/custom/path/.env\' }',
  '⚙️  enable debug logging with { debug: true }',
  '⚙️  override existing env vars with { override: true }',
  '⚙️  suppress all logs with { quiet: true }',
  '⚙️  write to custom object with { processEnv: myObject }',
  '⚙️  load multiple .env files with { path: [\'.env.local\', \'.env\'] }'
]

Commits

• 11acd9f 17.2.0
• 40e26e9 Merge pull request #889 from motdotla/env-quiet
• e99c367 clean up
• 281354e changelog 🪵
• d856497 smarter DOTENV_CONFIG_QUIET option that can read from source .env file
• 203c4e8 support passing DOTENV_CONFIG_QUIET=true (and other DOTENV_CONFIG options - s...
• 13bc310 17.1.0
• 0bc76fe add to test coverage
• a43eecf changelog 🪵
• 956638e adjust test
• Additional commits viewable in compare view

Updates supertest from 7.1.1 to 7.1.3

Release notes

Sourced from supertest's releases.

v7.1.3

• fix: revert automatic server closing (per #651) b6fd281
• fix: rename ci file 75bcbc9

---

forwardemail/supertest@v7.1.2...v7.1.3

v7.1.2

• feat: fix server lifecycle, callback handling, and SuperAgent v10 compatibility 6d060e3
• Merge pull request #862 from noritaka1166/fix-typo-test 0413057
• Merge pull request #841 from viniciusamc/master e2be0e1
• chore: fix typo in test b7f985b
• feat(bearer):bearer auth token method 411f7ce

---

forwardemail/supertest@v7.1.1...v7.1.2

Commits

• 0cf2ec3 7.1.3
• b6fd281 fix: revert automatic server closing (per #651)
• 75bcbc9 fix: rename ci file
• 29c3267 7.1.2
• 6d060e3 feat: fix server lifecycle, callback handling, and SuperAgent v10 compatibility
• 0413057 Merge pull request #862 from noritaka1166/fix-typo-test
• e2be0e1 Merge pull request #841 from viniciusamc/master
• b7f985b chore: fix typo in test
• 411f7ce feat(bearer):bearer auth token method
• See full diff in compare view

Maintainer changes

This version was pushed to npm by titanism, a new releaser for supertest since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 98.26%. Comparing base (f71c8de) to head (c97d9ad).
Report is 1 commits behind head on dev.

Additional details and impacted files

@@            Coverage Diff             @@
##              dev    #1485      +/-   ##
==========================================
- Coverage   98.28%   98.26%   -0.02%     
==========================================
  Files         164      159       -5     
  Lines        6770     6636     -134     
  Branches      143      143              
==========================================
- Hits         6654     6521     -133     
+ Misses        116      115       -1     

Flag	Coverage Δ
explorer-rest	?
faucet-authenticator	100.00% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

see 5 files with indirect coverage changes

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[dependabot]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml