[Snyk] Security upgrade @lhci/server from 0.9.0 to 0.13.0

[Elimuhub-coder]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • docs/recipes/heroku-server/package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	791/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 9.4	SQL Injection SNYK-JS-SEQUELIZE-2932027	No	Proof of Concept
	564/1000 Why? Has a fix available, CVSS 7	SQL Injection SNYK-JS-SEQUELIZE-2959225	No	No Known Exploit
	629/1000 Why? Has a fix available, CVSS 8.3	Improper Filtering of Special Elements SNYK-JS-SEQUELIZE-3324088	No	No Known Exploit
	479/1000 Why? Has a fix available, CVSS 5.3	Information Exposure SNYK-JS-SEQUELIZE-3324089	No	No Known Exploit
	529/1000 Why? Has a fix available, CVSS 6.3	Access of Resource Using Incompatible Type ('Type Confusion') SNYK-JS-SEQUELIZE-3324090	No	No Known Exploit
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-VALIDATOR-1090599	No	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-VALIDATOR-1090600	No	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-VALIDATOR-1090601	No	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-VALIDATOR-1090602	No	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: @lhci/server

The new version differs by 67 commits.

• 7cc4ba8 feat: upgrade to lighthouse 11.4.0 (feat: upgrade to lighthouse 11.4.0 GoogleChrome/lighthouse-ci#991)
• 3ea9955 chore(deps): run yarn audit fix to upgrade many deps (chore(deps): run yarn audit fix to upgrade many deps GoogleChrome/lighthouse-ci#992)
• c5bde95 chore: bump to node 18 (chore: bump to node 18 GoogleChrome/lighthouse-ci#989)
• 5d30e52 chore(deps): upgrade to storybook 7.6.4, preact 10.19.3, esbuild 0.19.9 (chore(deps): upgrade to storybook 7.6.4, preact 10.19.3, esbuild 0.19.9 GoogleChrome/lighthouse-ci#990)
• 939ef03 chores(deps): upgrade puppeteer to 21.6.1 (chores(deps): upgrade puppeteer to 21.6.1 GoogleChrome/lighthouse-ci#988)
• 00b2c91 chore(deps): bump lodash from 4.17.11 to 4.17.21 (chore(deps): bump lodash from 4.17.11 to 4.17.21 GoogleChrome/lighthouse-ci#956)
• a3ee284 chores(deps): upgrade umzug to 3.4.0 (chores(deps): upgrade umzug to 3.4.0 GoogleChrome/lighthouse-ci#984)
• 200b915 chore: set jest max workers to 1 (chore: set jest max workers to 1 GoogleChrome/lighthouse-ci#985)
• c183f9f chore(deps): bump handlebars from 4.1.2 to 4.7.8 (chore(deps): bump handlebars from 4.1.2 to 4.7.8 GoogleChrome/lighthouse-ci#978)
• 60693f0 chore(deps): bump @ babel/traverse from 7.4.3 to 7.23.6 (chore(deps): bump @babel/traverse from 7.4.3 to 7.23.6 GoogleChrome/lighthouse-ci#987)
• e40dec0 chore(deps): bump browserify-sign from 4.0.4 to 4.2.2 (chore(deps): bump browserify-sign from 4.0.4 to 4.2.2 GoogleChrome/lighthouse-ci#957)
• 2bf36f4 feat: sort projects by name (feat: sort projects by name GoogleChrome/lighthouse-ci#976)
• 72b79d8 tests: use more random name for sql test file (tests: use more random name for sql test file GoogleChrome/lighthouse-ci#986)
• de1614e feat(cli): add static dir file discovery depth flag (feat(cli): add static dir file discovery depth flag GoogleChrome/lighthouse-ci#940)
• 2cf4dc0 collect: use new headless mode (collect: use new headless mode GoogleChrome/lighthouse-ci#907)
• 29a67d9 chores(deps): upgrade typescript to 5.3.3 (chores(deps): upgrade typescript to 5.3.3 GoogleChrome/lighthouse-ci#983)
• 5b94d30 chores(deps): upgrade sequelize to 6.35.2 (chores(deps): upgrade sequelize to 6.35.2 GoogleChrome/lighthouse-ci#982)
• 91bfbf9 chore: remove jest worker limit (chore: remove jest worker limit GoogleChrome/lighthouse-ci#981)
• 7e75eed chore: rebaseline snapshot images (chore: rebaseline snapshot images GoogleChrome/lighthouse-ci#980)
• b16e48d docs: fix typo of puppeterScript to puppeteerScript (docs: fix typo of puppeterScript to puppeteerScript GoogleChrome/lighthouse-ci#979)
• a706c54 docs: add *.cjs to supported config extensions (docs: add *.cjs to supported config extensions GoogleChrome/lighthouse-ci#975)
• b124841 Readme: Update Heroku mentions (Update Heroku server README.md GoogleChrome/lighthouse-ci#931)
• 2bd2e9c chore(deps): bump tree-kill from 1.2.1 to 1.2.2 (chore(deps): bump tree-kill from 1.2.1 to 1.2.2 GoogleChrome/lighthouse-ci#952)
• 332888a catch localStorage exceptions in difftool (catch localStorage exceptions in difftool GoogleChrome/lighthouse-ci#938)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 SQL Injection
🦉 Access of Resource Using Incompatible Type ('Type Confusion')
🦉 Regular Expression Denial of Service (ReDoS)