[Snyk] Fix for 1 vulnerabilities

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	768/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: commitizen

The new version differs by 24 commits.

• ef760ef fix(deps): update dependency inquirer to v6 (#541)
• a70c063 feat: Drop support for Node.js <6.x, update dependencies (#566)
• 0d76887 chore: remove sign from windows build
• 1546df4 chore: assume yarn in tests
• c3764c8 fix: resolve linux build issues, add git exit code 128 warning
• f1150c8 chore: Create jobs build yml
• f0595ed chore: add azure jobs
• 4693079 chore: Set up CI with Azure Pipelines
• d565215 feat: support initialization with yarn. fixes #527 (#549)
• a70c234 fix(package): Remove opencollective post-install hook (#561)
• d5b8bc5 docs(readme): add npx use examples (#532)
• d103b10 chore(ci): test on Node.js 10.x (#531)
• 41a921b BREAKING CHANGE: Remove Node 0.12 support (#524)
• aa82496 fix(deps): update dependency glob to v7.1.2 (#506)
• 4bda943 fix(deps): update dependency lodash to v4.17.10 (#507)
• 67a4e16 fix(deps): update dependency find-root to v1.1.0 (#505)
• a21b674 fix(deps): update dependency dedent to v0.7.0 (#504)
• 43d54de fix(deps): update dependency cz-conventional-changelog to v2.1.0 (#503)
• 9a4e7ba chore(deps): update dependency sinon to v1.17.7 (#501)
• dfbd653 chore(deps): update dependency eslint-plugin-promise to v3.8.0 (#500)
• d99d7ac chore(deps): update dependency semantic-release to v6.3.6 (#498)
• c83376c chore(deps): update dependency semver to v5.5.0 (#499)
• 25738fe chore(deps): update dependency proxyquire to v1.8.0 (#497)
• f63dbae chore(deps): update dependency nyc to v10.3.2 (#496)

See the full diff

Package name: strip-ansi

The new version differs by 20 commits.

• 316ff53 7.0.0
• 7cda68d Require Node.js 12 and move to ESM
• d6d1128 Add @ Qix- to funding.yml
• 601423d Move to GitHub Actions
• 0a6e98d Add Node.js 14 to testing matrix (Color console.log output #35)
• 59533da 6.0.0
• 976f459 Require Node.js 8
• 57878e2 Tidelift tasks
• a022f23 Tidelift tasks
• b9c4929 5.2.0
• 81cd3cc Meta tweaks
• 89dc7f6 Add TypeScript definition (Implement the very last output line: #28)
• 5cb7e20 Fix readme (Show error when it happens in suite or mocks and test suite does not even get a chance to run. #27)
• 581fd4e 5.1.0
• 41b0a8b Add support for terminal link (Better snapshot reporting #26)
• 841f0c4 Add security section
• dfab677 5.0.0
• 6a25566 Require Node.js 6 and upgrade dependencies
• e8d149c Add Tidelift mention in the readme
• 52dcf65 Add related streaming version of this module to the readme (Feat/progress #15)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic