Bump dotenv from 5.0.1 to 8.2.0

[dependabot-preview]

Bumps dotenv from 5.0.1 to 8.2.0.

Changelog

Sourced from dotenv's changelog.

8.2.0 (2019-10-16)

8.1.0 (2019-08-18)

⚠ BREAKING CHANGES

• dropping Node v6 support because end-of-life

• Drop support for Node v6 (#392) (2e9636a), closes #392

8.0.0 (2019-05-02)

• Drop support for Node v6 (#392) (2e9636a), closes #392

BREAKING CHANGES

• dropping Node v6 support because end-of-life

[7.0.0] - 2019-03-12

Fixed

• Fix removing unbalanced quotes (#376)

Removed

• Removed load alias for config for consistency throughout code and documentation.

[6.2.0] - 2018-12-03

Added

• Support preload configuration via environment variables (#351)

[6.1.0] - 2018-10-08

Added

• debug option for config and parse methods will turn on logging

[6.0.0] - 2018-06-02

Changed

• Breaking: drop support for Node v4 (#304)

[5.0.0] - 2018-01-29

Added

... (truncated)

Commits

• 70425a9 chore(release): 8.2.0
• 75986d3 TypeScript types (#430)
• ba6b34d optimize dotenv.png (#424)
• 349ff7b chore(release): 8.1.0
• e4aa64d Upgrade dependencies (#416)
• 52fe318 Parse \r and \r\n line endings (#414)
• eba176b chore(release): 8.0.0
• 2e9636a Drop support for Node v6 (#392)
• f97a993 chore: add license badge (#387)
• 03a8915 Update CHANGELOG for v7.0.0
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will not automatically merge this PR because it includes a major update to a production dependency.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)