[Snyk] Security upgrade electron-packager from 15.5.1 to 17.1.2

[AstroGD]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-HTTPCACHESEMANTICS-3248783	Yes	Proof of Concept
	631/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.2	Missing Release of Resource after Effective Lifetime SNYK-JS-INFLIGHT-6095116	Yes	Proof of Concept
	479/1000 Why? Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-3050818	Yes	No Known Exploit
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: electron-packager

The new version differs by 75 commits.

• 51a103d v17.1.2 (#1550)
• 4d70cd0 fix(osx-sign): bump osx-sign to 1.0.5 (#1549)
• 833854f ci: fix publish documentation workflow (#1547)
• 30901bf chore: bump actions/setup-node from 3.7.0 to 3.8.0 (#1545)
• 7b595cc ci: use electronjs/node orb (#1546)
• be83558 chore: bump rcedit from 3.0.1 to 3.0.2 (#1541)
• 7e87e5e test: set `cacheRoot` to checksum download (#1540)
• 6430d3f ci: make canary run `--arch=universal` on macOS (#1539)
• 741f3c3 fix: prune `electron-nightly` even if in dependencies (#1538)
• 5ee6d73 ci: use action-semantic-pull-request (#1535)
• daca65c chore: bump word-wrap from 1.2.3 to 1.2.4 (#1536)
• 12b6225 docs: clarify CLI usage (#1534)
• 9a030b7 chore: bump actions/checkout from 3.5.2 to 3.5.3 (#1514)
• e4635f8 chore: bump actions/setup-node from 3.6.0 to 3.7.0 (#1529)
• 6cdd96b docs: add `osx-universal` flag to usage.txt (#1533)
• 72bc2a5 chore: bump plist from 3.0.6 to 3.1.0 (#1530)
• af334e3 chore: bump @ electron/universal from 1.3.4 to 1.4.1 (#1525)
• 036b954 chore: bump @ electron/notarize from 1.2.3 to 1.2.4 (#1518)
• 0c5957b build: update electron/electron-quick-start branch to main (#1505)
• 50c7a49 chore: bump sinon from 15.0.3 to 15.0.4 (#1504)
• 9331fdd chore: bump @ electron/asar from 3.2.3 to 3.2.4 (#1494)
• 0d60945 chore: bump fs-extra from 11.1.0 to 11.1.1 (#1488)
• e49124a chore: bump actions/checkout from 3.3.0 to 3.5.2 (#1498)
• 7e20bd5 build: use CircleCI cimg/node images (#1506)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)