[Snyk] Fix for 1 vulnerabilities

[nl253]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	703/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 6.2	Missing Release of Resource after Effective Lifetime SNYK-JS-INFLIGHT-6095116	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: @typescript-eslint/parser

The new version differs by 250 commits.

• c51e3f0 chore: publish v4.0.0
• 4ff8c43 chore: regen yarn.lock and fix lint issues
• c3a6c2a chore: add downlevel-dts to all packages with type declarations
• ac0defc chore: update dependencies
• cd84549 fix(scope-manager): correct analysis of abstract class properties (#2420)
• 3a7ec9b feat(typescript-estree): switch to globby (#2418)
• 9273441 feat(eslint-plugin): [no-unnecessary-condition][strict-boolean-expressions] add option to make the rules error on files without `strictNullChecks` turned on (#2345)
• 58b1c2d feat(eslint-plugin): add `consistent-type-imports` rule (#2367)
• 762bc99 fix(typescript-estree): correct ChainExpression interaction with parentheses and non-nulls (#2380)
• d738fa4 fix: correct decorator traversal for AssignmentPattern (#2375)
• 9de669f fix(eslint-plugin): [no-shadow] fix false-positive on enum declaration (#2374)
• a9cd6fb feat(eslint-plugin): [typedef] remove all defaults (#2352)
• a3f163a feat(eslint-plugin): [ban-ts-comment] change default for `ts-expect-error` to `allow-with-description` (#2351)
• c70f54f fix(eslint-plugin): [no-unused-vars] handle TSCallSignature (#2336)
• 3be125d feat: consume new scope analysis package (#2039)
• e9d2ab6 feat: support ESTree optional chaining representation (#2308)
• 3854d6c chore: setup automatic RC release for v4 branch
• a10d671 docs: adjust prettier snippet (#2427)
• 43b1201 chore: publish v3.10.1
• d1f0887 fix(eslint-plugin): [no-unnecessary-condition] correct regression with unary negations (#2422)
• 797a133 chore: update ISSUE_TEMPLATE.md
• 50f9c4a chore: publish v3.10.0
• 32fe2bb fix(eslint-plugin): [no-unnecessary-condition] better handling for unary negation (#2382)
• e6be621 feat(typescript-estree): update allowed TS version range (#2419)

See the full diff

Package name: markdownlint-cli

The new version differs by 250 commits.

• ce0d77a Bump version 0.34.0
• 3de966d Add Node 20 to CI test matrix.
• e540262 Bump xo from 0.54.1 to 0.54.2
• 02edb23 Bump markdownlint from 0.28.1 to 0.28.2
• 5024217 Bump glob from 10.1.0 to 10.2.2
• 26bbe10 Bump glob from 10.0.0 to 10.1.0
• 3f3c26c Bump xo from 0.54.0 to 0.54.1
• 98660a3 Bump commander from 10.0.0 to 10.0.1
• 5c71ad6 Bump glob from 9.3.4 to 10.0.0
• cd230b0 Update markdownlint.js to group require calls together for new xo policy.
• 1910c83 Bump xo from 0.53.1 to 0.54.0
• fc825b4 Bump markdownlint from 0.28.0 to 0.28.1
• 49da7ee Bump minimatch from 8.0.3 to 9.0.0
• afd8f0c Bump glob from 9.3.2 to 9.3.4
• 5027dd0 Bump minimatch from 7.4.3 to 8.0.3
• 2d95a13 Bump minimatch from 7.4.2 to 7.4.3
• 4e6fb32 Bump glob from 9.3.0 to 9.3.2
• 6da2a65 Bump markdownlint from 0.27.0 to 0.28.0
• 9844fce Bump execa from 7.1.0 to 7.1.1
• c9b0147 Rename local-only "test-rule-package" to avoid incorrect attribution to malware on npm via Dependabot alerts (https://snyk.io/redirect/github/igorshubovych/markdownlint-cli/security/dependabot/4).
• e6a706f Normalize "\" character in output path to get tests passing on Windows after dependency update to glob v9.
• 1636b71 Bump glob from 8.1.0 to 9.3.0
• a1ca192 Bump webpack from 5.64.1 to 5.76.1
• 12c54e6 Bump execa from 7.0.0 to 7.1.0

See the full diff

Package name: typedoc

The new version differs by 250 commits.

• bde0b6a chore: Bump version to 0.21.0
• 83a7eef chore: Sort thanks in changelog
• 371e035 chore: Upgrade dependencies
• a618f20 Merge remote-tracking branch 'origin/master' into beta
• 6b69252 chore: Bump version to 0.20.37
• 0e8d429 fix: Pin `marked` dependency to 2.0.x (#1602)
• 90cd4a0 chore: Bump version to 0.21.0-beta.4
• 6789331 chore: Remove outdated note in readme
• 1b1cd14 fix: Correctly handle comments on function type aliases
• 1dc5659 fix: Setters should always have a `void` return type
• d9e66b2 chore: Bump version to 0.21.0-beta.3
• 3f39508 fix: Resolve paths in option files according to the config directory
• 858b231 chore: Refactor tests to reduce runtime
• ec18bb0 Revert "feat: Add disableAliases option (#1576)"
• 6d215df feat: Improve monorepos by adding support for TS entry points (#1596)
• f95e456 chore: Bump version to 0.21.0-beta.2
• e142f00 chore: Fix lint
• 9f56423 chore: Fix lint
• 269cf08 chore: Move package tests into TD repo
• 15c0552 feat: Support for monorepos
• 2c2b91b chore: Bump beta version
• 9e94e5c chore: Fix tests when compiling with strict=false
• b2165d3 chore: Upgrade beta version
• 5a6a125 chore: Upgrade prettier

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.