Bump sharp from 0.27.1 to 0.28.3

[dependabot-preview]

Bumps sharp from 0.27.1 to 0.28.3.

Changelog

Sourced from sharp's changelog.

v0.28.3 - 24th May 2021

• Ensure presence of libvips, vendored or global, before invoking node-gyp.

• Skip shrink-on-load for multi-page WebP. #2714

• Add contrast limiting adaptive histogram equalization (CLAHE) operator. #2726 @​baparham

v0.28.2 - 10th May 2021

• Allow withMetadata to set density. #967

• Skip shrink-on-load where one dimension <4px. #2653

• Allow escaped proxy credentials. #2664 @​msalettes

• Add premultiplied flag for raw pixel data input. #2685 @​mnutt

• Detect empty input and throw a helpful error. #2687 @​JakobJingleheimer

• Add install-time flag to skip version compatibility checks. #2692 @​xemle

v0.28.1 - 5th April 2021

• Ensure all installation errors are logged with a more obvious prefix.

• Allow withMetadata to set and update EXIF metadata. #650

• Add support for OME-TIFF Sub Image File Directories (subIFD). #2557

• Allow ensureAlpha to set the alpha transparency level. #2634

v0.28.0 - 29th March 2021

... (truncated)

Commits

• 9f384e1 Release v0.28.3
• 35e8c8b Docs: ensure ops without examples are indexed
• dc53f1b Bump deps
• 7013960 Docs: fix CLAHE link
• 1b4d152 Docs: cross-link removeAlpha and flatten
• ed3377c Docs: add parameter names to search keywords
• d72852b Docs: changelog entry for #2726
• 4b6b618 Add contrast limiting adaptive histogram equalization (CLAHE) operator (#2726)
• b69a54f Ensure presence of libvips before invoking node-gyp
• 81e388a Docs: composite supports failOnError and limitInputPixels
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)