[Snyk] Fix for 1 vulnerabilities

[kamalaknn]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	658/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: eslint

The new version differs by 250 commits.

• 3dd6741 7.0.0
• 9a722f9 Build: changelog update for 7.0.0
• b98d8bd Upgrade: eslint-release@2.0.0 (#13271)
• 4c0b028 Fix: remove Node.js and CommonJS category from build process (#13242)
• 401a687 Chore: fix rules list for prereleases (#13230)
• 4ef6158 Breaking: espree@7.0.0 (#13270)
• b5c8d73 Docs: update 7.0.0 migration guide for consistency (#13267)
• 356fdb4 Docs: add migration guide (#12692)
• 015edf6 Sponsors: Sync README with website
• fdfa364 7.0.0-rc.0
• 8d1b4db Build: changelog update for 7.0.0-rc.0
• 0b1d65a Update: Improve report location for array-callback-return (refs #12334) (#13109)
• d85e291 Fix: yoda left string fix for exceptRange (fixes #12883) (#13052)
• 2ce6bed Chore: added tests for nested arrays (#13145)
• d3aac53 Update: report backtick loc in no-unexpected-multiline (refs #12334) (#13142)
• 8e7a2d9 Fix: func-call-spacing "never" reports wrong message (fixes #13190) (#13193)
• bcafd0f Update: Add ESLint API (refs New: ESLint Class Replacing CLIEngine eslint/rfcs#40) (#12939)
• 3eeae56 Upgrade: some (dev) deps (#13155)
• 6b7030b Chore: Run tests on Node.js v14 (#13210)
• ebc28d7 Fix: Remove default .js from --ext CLI option (#13176)
• 5c1bdeb Update: Improve report location for getter-return (refs #12334) (#13164)
• 56d2bee Docs: fix typos (#13204)
• e13256e Chore: use espree.latestEcmaVersion in config-initializer (#13157)
• e4f57b7 Chore: add nested array tests for array-element-newline (#13161)

See the full diff

Package name: nock

The new version differs by 234 commits.

• 11dba99 fix (#1659)
• bf1d7d6 test: Clarify that cleanAll removes persistent mocks (#1647)
• e661d0d bug(recorder): replace qs lib with native querystring. (#1653)
• 05ae31e Refactor lifecycle tests using got / async (#1646)
• 26fc08f Async Reply functions (always emit errors) (#1596)
• 35221ce refactor: overhaul body and query matching (#1632)
• 88e85ac fix: trigger release (#1645)
• e744b0a bug: handle content-type request headers when arrays
• 87cac20 refactor: default function arguments (#1640)
• 9c504f6 refactor: default options on recorder, remove dead code (#1641)
• ad264cb test: change tests to use test domain (#1639)
• 4a4b8ec feat(overrider): added support for header modifications before end()
• 213014b Display the badge correctly (#1637)
• df1a5cd refactor: Convert Scope to a class (#1636)
• 3bdadef refactor: Convert Socket to a class (#1635)
• 08b1b6b refactor: Convert DelayedBody to a class (#1634)
• f385edd Advertise and enforce 100% coverage, drop Coveralls (#1633)
• 60a055b refactor(interceptor): separate hostname matching
• 2a54482 feat(interceptor): duplicate query calls throw (#1630)
• f015929 chore(deps): bump lodash from 4.17.11 to 4.17.13 (#1629)
• c78ceb3 Clean up some more hostnames in tests (#1627)
• a2208d1 feat(interceptor): duplicate query keys throw
• 880224a refactor: Scope.pendingMocks
• a201ac0 test(socket): add coverage for timeout without a callback

See the full diff

Package name: nyc

The new version differs by 127 commits.

• bebf4d6 chore(release): 15.0.0
• 2931730 chore: Update to final releases of dependencies (#1245)
• d44ff19 chore: Update node-preload and use process-on-spawn (#1243)
• 5258e9f feat: Filenames relative to project cwd in coverage reports (#1212)
• 6039f29 chore: Unpin test-exclude, update to latest pre-releases (#1240)
• f3c9e6c chore: Temporarily pin test-exclude (#1239)
• 28ed746 chore: Lazy load modules that are rarely/never needed in test processes. (#1232)
• 7307626 chore: Remove cp-file module (#1230)
• dfd629d fix: Better error handling for main execution, reporting (#1229)
• 549c953 chore: Update dependencies, pin find-cache-dir (#1228)
• a1dee03 chore: Update yargs (#1224)
• 8078a79 chore: Fix 404 in README.md. (#1220)
• 7a02cb7 chore: Add enterprise language (#1217)
• ea94c7f chore: Remove unused functions (#1218)
• 53c66b9 docs: `npm home nyc` goes to github master branch README (#1201)
• cf5e5d3 chore: Update dependencies
• 8411a26 fix: Correct handling of source-maps for pre-instrumented files (#1216)
• f890360 docs: Fix URL to default excludes in README.md (#1214)
• 3726bbb chore: Update to async version of istanbul-lib-source-maps (#1199)
• 0efc6d1 chore: Tweak arguments for async coverage data readers (#1198)
• cc77e13 chore: Add `use strict` to all except fixtures (#1197)
• bcbe1df chore: Update dependencies (#1196)
• 2735ee2 chore: 100% coverage (#1195)
• fd40d49 feat: Use @ istanbuljs/schema for yargs setup (#1194)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)