[Snyk] Fix for 1 vulnerabilities

[rahuldhawan291]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	658/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: eslint

The new version differs by 250 commits.

• 3dd6741 7.0.0
• 9a722f9 Build: changelog update for 7.0.0
• b98d8bd Upgrade: eslint-release@2.0.0 (#13271)
• 4c0b028 Fix: remove Node.js and CommonJS category from build process (#13242)
• 401a687 Chore: fix rules list for prereleases (#13230)
• 4ef6158 Breaking: espree@7.0.0 (#13270)
• b5c8d73 Docs: update 7.0.0 migration guide for consistency (#13267)
• 356fdb4 Docs: add migration guide (#12692)
• 015edf6 Sponsors: Sync README with website
• fdfa364 7.0.0-rc.0
• 8d1b4db Build: changelog update for 7.0.0-rc.0
• 0b1d65a Update: Improve report location for array-callback-return (refs #12334) (#13109)
• d85e291 Fix: yoda left string fix for exceptRange (fixes #12883) (#13052)
• 2ce6bed Chore: added tests for nested arrays (#13145)
• d3aac53 Update: report backtick loc in no-unexpected-multiline (refs #12334) (#13142)
• 8e7a2d9 Fix: func-call-spacing "never" reports wrong message (fixes #13190) (#13193)
• bcafd0f Update: Add ESLint API (refs New: ESLint Class Replacing CLIEngine eslint/rfcs#40) (#12939)
• 3eeae56 Upgrade: some (dev) deps (#13155)
• 6b7030b Chore: Run tests on Node.js v14 (#13210)
• ebc28d7 Fix: Remove default .js from --ext CLI option (#13176)
• 5c1bdeb Update: Improve report location for getter-return (refs #12334) (#13164)
• 56d2bee Docs: fix typos (#13204)
• e13256e Chore: use espree.latestEcmaVersion in config-initializer (#13157)
• e4f57b7 Chore: add nested array tests for array-element-newline (#13161)

See the full diff

Package name: mocha

The new version differs by 50 commits.

• ef6c820 Release v6.2.1
• 9524978 updated CHANGELOG for v6.2.1 [ci skip]
• dfdb8b3 Update yargs to v13.3.0 (#3986)
• 18ad1c1 treat '--require esm' as Node option (#3983)
• fcffd5a Update yargs-unparser to v1.6.0 (#3984)
• ad4860e Remove extraGlobals() (#3970)
• b269ad0 Clarify effect of .skip() (#3947)
• 1e6cf3b Add Matomo to website (#3765)
• 91b3a54 fix style on mochajs.org (#3886)
• 0e9d8ad tty.getWindowSize is not a function inside a "worker_threads" worker (#3955)
• 48da42e Remove jsdoc index.html placeholder from eleventy file structure and fix broken link in jsdoc tutorial (#3966)
• bd47776 Release v6.2.0
• cc595af update CHANGELOG.md for v6.2.0 [ci skip]
• 59d70ee fix: remove duplicate line-height property (#3957)
• f77cac4 fix: do not redeclare variable (#3956)
• 6201e42 Hide stacktrace when cli args are missing (#3963)
• 88f45d5 Don't re-initialize grep option on watch re-run (#3960)
• 5d4dd98 Fix No Files error when file is passed via --files (#3942)
• 15b96af Collect test files later (#3953)
• ccee5f1 Base reporter store ref to console.log (#3725)
• 47318a7 update @ mocha/contributors to v1.0.4 (#3944)
• c903147 More, improved integration tests for watching (#3929)
• e341ea4 Update CI config files to use Node-12.x (#3919)
• 3064d25 update @ mocha/docdash to v2.1.1 (#3945)

See the full diff

Package name: nyc

The new version differs by 55 commits.

• bebf4d6 chore(release): 15.0.0
• 2931730 chore: Update to final releases of dependencies (#1245)
• d44ff19 chore: Update node-preload and use process-on-spawn (#1243)
• 5258e9f feat: Filenames relative to project cwd in coverage reports (#1212)
• 6039f29 chore: Unpin test-exclude, update to latest pre-releases (#1240)
• f3c9e6c chore: Temporarily pin test-exclude (#1239)
• 28ed746 chore: Lazy load modules that are rarely/never needed in test processes. (#1232)
• 7307626 chore: Remove cp-file module (#1230)
• dfd629d fix: Better error handling for main execution, reporting (#1229)
• 549c953 chore: Update dependencies, pin find-cache-dir (#1228)
• a1dee03 chore: Update yargs (#1224)
• 8078a79 chore: Fix 404 in README.md. (#1220)
• 7a02cb7 chore: Add enterprise language (#1217)
• ea94c7f chore: Remove unused functions (#1218)
• 53c66b9 docs: `npm home nyc` goes to github master branch README (#1201)
• cf5e5d3 chore: Update dependencies
• 8411a26 fix: Correct handling of source-maps for pre-instrumented files (#1216)
• f890360 docs: Fix URL to default excludes in README.md (#1214)
• 3726bbb chore: Update to async version of istanbul-lib-source-maps (#1199)
• 0efc6d1 chore: Tweak arguments for async coverage data readers (#1198)
• cc77e13 chore: Add `use strict` to all except fixtures (#1197)
• bcbe1df chore: Update dependencies (#1196)
• 2735ee2 chore: 100% coverage (#1195)
• fd40d49 feat: Use @ istanbuljs/schema for yargs setup (#1194)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)