Bump pkg from 4.3.0 to 4.4.0

[dependabot-preview]

Bumps pkg from 4.3.0 to 4.4.0.

Release notes

Sourced from pkg's releases.

4.3.4

Patches

• Updated link to Spectrum: #499

4.3.3

• switch from acorn to @babel/parser. fixes #206 (object spread)
• switch from babel-preset-es2015 to babel-preset-env
• switch from simple-bufferstream to into-stream. fixes #442
• test for undo patch for PKG_INVOKE_NODEJS
• proper error messages for node 10 emulation

4.3.2

• support node 10.4.1 and 8.11.3
• readme: usage of max_old_space_size. fixes #447
• refactor: pass marker separately from record to all fns
• filter out bakes that don't influence the bytecode. fixes #308
• dictionary: negotiator. fixes #387

4.3.1

• support exiftool.exe and exiftool.pl for dist-exiftool (#246) thanks to @​mika-fischer
• logform support (winstonjs library) (#337) thanks to @​mfds
• implement --public-packages. thanks to @​szaffarano for idea
• support object spread. update acorn, add a test for object spread
• rename 'permissive' to 'public' to align with cli opt
• support tiny-worker. fixes #334

Commits

• 50da752 Release 4.4.0
• 460b1c9 don't limit test-50-promisify to host-only
• 3952f39 node 8 changed from util.createPromise to new Promise as well
• ee56bd7 raise babel target to node 8
• 1d47858 adjustments (#680)
• b0da4ee tests: remove test-46-multi-arch from no-npm run
• 005117c tests: add node 12, remove node 6
• 8616bb6 update test-42-fetch-all to reflect base binaries we provide
• 215af15 upgrade pkg-fetch and babel
• 589c6a5 bootstrap.js: don't check PKG_DUMMY_ENTRYPOINT in worker threads
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.