Need an updated version of micromatch to resolve regular expression DOS vulnerabilities

[SailingSteve]

Issue details

npm audit reports:

│ Low │ Regular Expression Denial of Service │
│ Package │ braces │
│ Patched in │ >=2.3.1 │
│ Dependency of │ browser-sync [dev] │
│ Path │ browser-sync > micromatch > braces │
│ More info │ https://nodesecurity.io/advisories/786 │

Steps to reproduce/test case

npm audit

Please specify which version of Browsersync, node and npm you're running

• Browsersync [2.26.3]
• Node [10.13.0]
• Npm [6.4.1]

Affected platforms

I use a Mac, but this probably affects all users.

• linux
• windows
• OS X
• freebsd
• solaris
• other (please specify which)

Browsersync use-case

• API
• Gulp
• Grunt
• CLI

If CLI, please paste the entire command below

for all other use-cases, (gulp, grunt etc), please show us exactly how you're using Browsersync

[shakyShane]

fixed in 2.26.4 :)