[Snyk] Fix for 1 vulnerabilities

[qsays]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	661/1000 Why? Recently disclosed, Has a fix available, CVSS 7.5	Missing Release of Resource after Effective Lifetime SNYK-JS-INFLIGHT-6095116	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: ali-oss

The new version differs by 250 commits.

• 2468cf8 chore: release v6.18.0 (#1234)
• 9a74414 chore: upgrade eslint-config-airbnb to v19.0.4 (#1233)
• ab2f4a3 feat: the browser needs to set cross domain and expose the x-oss-next-append-position header (#1218)
• b113222 fix: upgrade address from 1.2.0 to 1.2.2 (#1184)
• 1aecf80 chore: add prettier and batch format code (#1222)
• e35ba29 test: fix multipartUploadStreams.length test case (#1223)
• bc05406 fix: upgrade utility from 1.17.0 to 1.18.0 (#1203)
• 39ef9ac fix: upgrade is-type-of from 1.2.1 to 1.4.0 (#1204)
• d842a6c fix: uploadPart not pass all headers parameters (#1215)
• 0dd31dd chore: opt doc describes (#1187)
• c035f17 docs: correct the stream description (#1212)
• 03f5ef0 Update README.md (#1191)
• 12fcfd1 feat: optimized multipartUpload progress close #1139 (#1141)
• 014ecba chore: typo (#1131)
• e6cdfe5 fix: to fix callback customValue (#1126)
• ed8d997 chore: doc changed (#1135)
• a9b4d03 fix: upgrade address from 1.1.2 to 1.2.0 (#1114)
• 3f26b79 fix: fix user input header MD5 value being overwritten problem (#1100)
• 1697cc3 chore: tweaking test cases (#1115)
• d2aab4e chore: utils optmized (#1112)
• 1a05e80 feat: add asyncSignatureUrl method (#1057)
• e4d0e1f chore: add commitlint (#1105)
• a63a5a4 feat: add getBucketStat method (#1102)
• 117757d Update schedule.yml

See the full diff

Package name: rimraf

The new version differs by 56 commits.

• 3b6b098 4.0.0
• e0cffea ci: reduce workload even more
• 0e6646d ci: remove unnecessary lint filter
• 546e017 update action versions
• 6d88a65 tone down benchmark intensity
• 842a8d2 fix benchmark workflow yaml
• 1b91697 chore: add copyright year to license
• 08bbb06 rewrite in TS, export hybrid, update changelog, docs
• 1b3f46e drop support for node versions below 14
• 2e1f003 gh actions workflow for benchmarks
• 52f9370 tests for retry-busy behavior
• 188e3ed don't test on very old node versions
• d1d5495 test for fix-eperm
• e7501cd prettier formatting
• 40f64ec windows: only fall back to move-remove when absolutely necessary
• b6f7819 update tap
• 99496cd test: run posix test on windows, why not?
• 51d43c1 benchmarks
• 6b8aa29 doc: correct os.tmp default
• 4b228c9 do not ever actually try to rmdir /
• 2442655 consolidate all the spellings of 'opt' into one
• d4eec2e add cli script
• 0c82d74 accept strings, arrays of strings, and no other types
• ad4f2db Do not rimraf /, override with preserveRoot:false

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.