[Snyk] Fix for 1 vulnerabilities

[aliscco]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • node_modules/table/package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	658/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: babel-plugin-istanbul

The new version differs by 12 commits.

• 2fb91f5 chore(release): 6.0.0
• 063274a chore: Update to final releases of dependencies ([Snyk] Security upgrade ava from 3.15.0 to 4.0.0 #233)
• 99bd2a2 chore: Update dependencies ([Snyk] Fix for 23 vulnerabilities #232)
• 95b2df7 chore: Tidelift tasks
• c35ed7b chore: Temporarily pin test-exclude ([Snyk] Security upgrade mocha from 3.5.3 to 10.1.0 #231)
• 2342557 chore: Set high timeout for slow Windows CI ([Snyk] Fix for 4 vulnerabilities #229)
• f39924e chore: Fix package.json engines field
• fe08f5b feat: Add support for instrumenter options ([Snyk] Fix for 3 vulnerabilities #227)
• 93db21a feat!: Drop node.js 6 ([Snyk] Fix for 4 vulnerabilities #226)
• 2b7ea02 chore: Update package-lock.json ([Snyk] Fix for 4 vulnerabilities #223)
• c2aecae chore: Upgrade standard to v14.2.0 ([Snyk] Fix for 4 vulnerabilities #220)
• 6d21bf2 chore(package): update standard-version to version 7.0.0 ([Snyk] Fix for 4 vulnerabilities #216)

See the full diff

Package name: eslint

The new version differs by 250 commits.

• 3dd6741 7.0.0
• 9a722f9 Build: changelog update for 7.0.0
• b98d8bd Upgrade: eslint-release@2.0.0 (#13271)
• 4c0b028 Fix: remove Node.js and CommonJS category from build process (#13242)
• 401a687 Chore: fix rules list for prereleases (#13230)
• 4ef6158 Breaking: espree@7.0.0 (#13270)
• b5c8d73 Docs: update 7.0.0 migration guide for consistency (#13267)
• 356fdb4 Docs: add migration guide (#12692)
• 015edf6 Sponsors: Sync README with website
• fdfa364 7.0.0-rc.0
• 8d1b4db Build: changelog update for 7.0.0-rc.0
• 0b1d65a Update: Improve report location for array-callback-return (refs #12334) (#13109)
• d85e291 Fix: yoda left string fix for exceptRange (fixes #12883) (#13052)
• 2ce6bed Chore: added tests for nested arrays (#13145)
• d3aac53 Update: report backtick loc in no-unexpected-multiline (refs #12334) (#13142)
• 8e7a2d9 Fix: func-call-spacing "never" reports wrong message (fixes #13190) (#13193)
• bcafd0f Update: Add ESLint API (refs New: ESLint Class Replacing CLIEngine eslint/rfcs#40) (#12939)
• 3eeae56 Upgrade: some (dev) deps (#13155)
• 6b7030b Chore: Run tests on Node.js v14 (#13210)
• ebc28d7 Fix: Remove default .js from --ext CLI option (#13176)
• 5c1bdeb Update: Improve report location for getter-return (refs #12334) (#13164)
• 56d2bee Docs: fix typos (#13204)
• e13256e Chore: use espree.latestEcmaVersion in config-initializer (#13157)
• e4f57b7 Chore: add nested array tests for array-element-newline (#13161)

See the full diff

Package name: eslint-config-canonical

The new version differs by 28 commits.

• 137fb17 feat: update dependencies and add new rules
• 956d2c9 feat: disable prefer-default-export
• bb181c4 feat: add react-hooks
• aa75410 feat: add ref (react) and rel (html attribute)
• 2ab2511 feat: add exception for props
• 78ce018 feat: upgrade dependencies; add new rules
• ad6b538 fix: prefer import/no-duplicates
• 04e6b3c fix: prefer import/no-duplicates
• b973ea9 fix: react/jsx-one-expression-per-line
• 806fbea fix: update dependencies
• 391b006 fix: align flowtype delimeter dangle with comma dangle
• 100be88 feat: adjust to match popular ignored rules
• 5eb90e3 feat: adjust to match popular ignored rules
• 6af0291 feat: require comma dangle in multi-line
• 01d7a75 fix: update comparison
• ccb0032 fix: update dependencies
• 180c5b9 Merge branch 'master' of github.com:gajus/eslint-config-canonical
• e1f87c4 fix: prefer react/jsx-fragments syntax
• d374d08 Merge pull request [Snyk] Security upgrade ansi-regex from 5.0.0 to 6.0.1 #18 from brettz9/patch-1
• 80cf729 Update peerDeps to include ESLint 6.0
• 22c1757 Merge branch 'master' of github.com:gajus/eslint-config-canonical
• d85ac0d fix: disable misbehaving test; does not read ava config in package.json
• c9db68f Create FUNDING.yml
• f2330a0 docs: add gitspo mentions badge

See the full diff

Package name: husky

The new version differs by 5 commits.

• 764a236 Update dependencies
• fe22db2 4.0.0
• d56d341 Update README.md
• e2ad780 Update README.md
• 0ffe785 Merge 4.0 ([Snyk] Security upgrade standard from 12.0.1 to 15.0.0 #625)

See the full diff

Package name: nyc

The new version differs by 55 commits.

• bebf4d6 chore(release): 15.0.0
• 2931730 chore: Update to final releases of dependencies ([Snyk] Security upgrade tap from 2.3.4 to 5.4.3 #1245)
• d44ff19 chore: Update node-preload and use process-on-spawn ([Snyk] Fix for 1 vulnerabilities #1243)
• 5258e9f feat: Filenames relative to project cwd in coverage reports ([Snyk] Security upgrade eslint from 3.19.0 to 6.0.0 #1212)
• 6039f29 chore: Unpin test-exclude, update to latest pre-releases ([Snyk] Security upgrade nyc from 14.1.1 to 15.0.0 #1240)
• f3c9e6c chore: Temporarily pin test-exclude ([Snyk] Fix for 1 vulnerabilities #1239)
• 28ed746 chore: Lazy load modules that are rarely/never needed in test processes. ([Snyk] Fix for 4 vulnerabilities #1232)
• 7307626 chore: Remove cp-file module ([Snyk] Security upgrade xo from 0.24.0 to 0.42.0 #1230)
• dfd629d fix: Better error handling for main execution, reporting ([Snyk] Security upgrade aud from 1.1.5 to 2.0.0 #1229)
• 549c953 chore: Update dependencies, pin find-cache-dir ([Snyk] Fix for 1 vulnerabilities #1228)
• a1dee03 chore: Update yargs ([Snyk] Fix for 1 vulnerabilities #1224)
• 8078a79 chore: Fix 404 in README.md. ([Snyk] Fix for 1 vulnerabilities #1220)
• 7a02cb7 chore: Add enterprise language ([Snyk] Fix for 2 vulnerabilities #1217)
• ea94c7f chore: Remove unused functions ([Snyk] Security upgrade tap from 12.7.0 to 18.0.0 #1218)
• 53c66b9 docs: `npm home nyc` goes to github master branch README ([Snyk] Fix for 1 vulnerabilities #1201)
• cf5e5d3 chore: Update dependencies
• 8411a26 fix: Correct handling of source-maps for pre-instrumented files ([Snyk] Fix for 1 vulnerabilities #1216)
• f890360 docs: Fix URL to default excludes in README.md ([Snyk] Security upgrade tsd from 0.7.4 to 0.12.0 #1214)
• 3726bbb chore: Update to async version of istanbul-lib-source-maps ([Snyk] Fix for 1 vulnerabilities #1199)
• 0efc6d1 chore: Tweak arguments for async coverage data readers ([Snyk] Fix for 1 vulnerabilities #1198)
• cc77e13 chore: Add `use strict` to all except fixtures ([Snyk] Fix for 1 vulnerabilities #1197)
• bcbe1df chore: Update dependencies ([Snyk] Security upgrade xo from 0.11.2 to 0.42.0 #1196)
• 2735ee2 chore: 100% coverage ([Snyk] Fix for 1 vulnerabilities #1195)
• fd40d49 feat: Use @ istanbuljs/schema for yargs setup ([Snyk] Fix for 1 vulnerabilities #1194)

See the full diff

Package name: semantic-release

The new version differs by 250 commits.

• ac40804 fix(deps): update dependency @ semantic-release/release-notes-generator to v11 (#2778)
• e046ece ci(signatures): moved the audit step to the non-matrix stage
• ef998ac ci(dependencies): audited signatures and provenance attestations of installed packages
• 278d8e6 docs(gh-actions): captured details about publishing with provenance from an actions workflow
• ddf4065 chore(deps): update dependency sinon to v15.0.4 (#2769)
• 4bddb37 fix(deps): update dependency env-ci to v9 (#2757)
• aa90774 chore(deps): update dependency testdouble to v3.17.2 (#2751)
• d7e14f6 docs(artifactory): removed details about using artifactory with legacy auth
• 4a943a5 chore(deps): pin dependencies (#2744)
• f47a510 chore(deps): lock file maintenance ([Snyk] Security upgrade webpack from 4.44.1 to 5.0.0 #2737)
• 05596bc chore(deps): update dependency prettier to ^2.8.4 (#2746)
• c6e84ef chore(deps): update dependency sinon to v15.0.3 (#2748)
• 0cbe804 chore(deps): update dependency fs-extra to ^11.1.0 (#2745)
• ea32d10 chore(deps): update dependency testdouble to v3.17.1 (#2740)
• deb1b7f Merge pull request #2741 from semantic-release/beta
• 2d7f607 chore(lint): ran prettier against the release workflow file
• 91eae11 ci(release): enabled provenance for publishing to npm
• 050412e Merge branch 'master' of github.com:semantic-release/semantic-release into beta
• d647433 fix(deps): updated to the latest version of the npm plugin
• f1d6e65 chore(deps): update dependency dockerode to v3.3.5
• c38b53a fix(deps): update dependency execa to v7.1.1
• fbede54 fix(deps): update dependency cosmiconfig to v8.1.2
• 6d286cd chore(deps): update dependency sinon to v15.0.2 ([Snyk] Security upgrade semantic-release from 16.0.0-beta.18 to 22.0.0 #2730)
• bc6d8b4 chore(deps): update dependency testdouble to v3.17.0 ([Snyk] Security upgrade @actions/artifact from 0.5.1 to 2.1.7 #2731)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)