[Security] Bump laravel/framework from 5.6.24 to 5.6.40

[dependabot-preview]

Bumps laravel/framework from 5.6.24 to 5.6.40. This update includes a security fix.

Vulnerabilities fixed

Sourced from The PHP Security Advisories Database.

Cookie serialization vulnerability

Affected versions: >=4.0.0, <=4.0.11; >=4.1.0, <=4.1.31; >=4.2.0, <=4.2.22; >=5.0.0, <=5.0.35; >=5.1.0, <=5.1.46; >=5.2.0, <=5.2.45; >=5.3.0, <=5.3.31; >=5.4.0, <=5.4.36; >=5.5.0, <5.5.42; >=5.6.0, <5.6.30

Commits

• 5ceadf9 version
• 179b7d3 Add support for the new composer installed.json format (#32310) (#32330)
• d4edbf5 Apply fixes from StyleCI (#29062)
• d138303 Merge pull request #29051 from NostradamusICTBV/5.6
• 6490d63 Added return type to avoid errors in tests
• 8bcaa9b Add .styleci.yml to .gitattributes
• 9e427ed Modify layout file
• 614a547 Merge pull request #28300 from laravel/analysis-XkdkB1
• de04af8 Apply fixes from StyleCI
• 4f762cf Only check PHP on old branches
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

[codecov]

Codecov Report

Merging #43 into master will decrease coverage by 0.21%.
The diff coverage is n/a.

@@             Coverage Diff              @@
##             master      #43      +/-   ##
============================================
- Coverage     67.73%   67.52%   -0.22%     
  Complexity      337      337              
============================================
  Files            18       18              
  Lines           936      936              
============================================
- Hits            634      632       -2     
- Misses          302      304       +2     

Impacted Files	Coverage Δ	Complexity Δ
src/BaseModel.php	28.94% <0.00%> (-0.88%)	52.00% <0.00%> (ø%)
src/BaseController.php	85.39% <0.00%> (-0.32%)	96.00% <0.00%> (ø%)

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 900637b...10dd048. Read the comment docs.

[coveralls]

Pull Request Test Coverage Report for Build 93

• 0 of 0 changed or added relevant lines in 0 files are covered.
• 2 unchanged lines in 2 files lost coverage.
• Overall coverage remained the same at 67.644%

---

Files with Coverage Reduction	New Missed Lines	%
src/BaseController.php	1	84.97%
src/BaseModel.php	1	24.51%

Totals
Change from base Build 74:	0.0%
Covered Lines:	577
Relevant Lines:	853

---

💛 - Coveralls