Bump dependabot-core from 0.85.2 to 0.86.6

Bumps dependabot-core from 0.85.2 to 0.86.6.

Changelog

Sourced from dependabot-core's changelog.

v0.86.6, 20 December 2018

• Git: Raise a helpful error if a submodule path doesn't actually point to asubmodule

v0.86.5, 20 December 2018

• Actually cache nuget listing results

v0.86.4, 19 December 2018

• Python: Raise issue for Python URLs that contain an environment variable
• Python: Extract LatestVersionFinder tests into separate file

v0.86.3, 19 December 2018

• Ruby: Fetch gemspec to look for source if API is not available

v0.86.2, 18 December 2018

• Allow .NET repos with a src directory through

v0.86.1, 18 December 2018

• .NET: Check src directory for sln files by default

v0.86.0, 17 December 2018

• Npm: Fix issue where the wrong lockfile was updated when using both Lerna and npm lockfiles

v0.85.3, 17 December 2018

• Rust: Ignore aliased dependencies
• Bump cython from 0.29.1 to 0.29.2 in /python/helpers
• Ruby: More careful replacement of equality matcher requirements

Commits

• a439ad5 v0.86.6
• 5e639c9 Git: Raise a helpful error if a submodule path doesn't actually point to asub...
• cb17379 Add config file
• aa3b838 v0.86.5
• 5c533e5 Actually cache nuget listing results
• 85bdd63 v0.86.4
• 2853000 Python: Raise issue for Python URLs that contain an environment variable
• aa82b18 Python: Extract LatestVersionFinder tests into separate file
• f48c130 [Security] Bump cryptiles from 3.1.2 to 3.1.4 in /helpers/yarn
• 6b6b8ae v0.86.3
• Additional commits viewable in compare view