[Snyk] Security upgrade keytar from 7.7.0 to 7.8.0

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • src/package.json
  • src/package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	833/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 8.8	Information Exposure SNYK-JS-SIMPLEGET-2361683	No	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: keytar

The new version differs by 35 commits.

• a1d5a2f 7.8.0
• d14d55e Merge pull request Unlock with pin does't work  #436 from atom/dependabot/npm_and_yarn/node-addon-api-4.3.0
• 46ac0ec Merge pull request [Soft Delete] - Added trash to desktop app #429 from atom/dependabot/npm_and_yarn/node-gyp-8.4.1
• 2a1bf98 Bump node-gyp from 7.1.2 to 8.4.1
• 1ef9de4 Merge pull request Added GenericName for app on Linux #439 from atom/dependabot/npm_and_yarn/chai-4.3.6
• 6d77591 Merge pull request 2FA screen goes back to password  #437 from atom/dependabot/npm_and_yarn/mocha-9.2.0
• 013c32a Bump node-addon-api from 3.1.0 to 4.3.0
• 38760d6 Merge pull request Menu not accessible with snap package on GNU/Linux clients#2624 from atom/bump-prebuild-install
• 6279215 Move `prebuild-install` back to runtime dependencies, where it belongs
• e609b2a Upgrade prebuild-install to v7.0.1 and add it as a dev-dependency
• 110cc51 Bump mocha from 8.4.0 to 9.2.0
• 92e82c4 Bump chai from 4.3.4 to 4.3.6
• 38f7263 Merge pull request Deleting an entry generates Yes/No popup that's unreadable.  #440 from atom/dependabot/npm_and_yarn/prebuild-11.0.2
• 1c9aad1 Bump prebuild from 10.0.1 to 11.0.2
• b162ae7 Merge pull request Add support for U2F devices for Snap Package #442 from atom/fix-macos-ci
• 3442837 Another attempt to fix Linux CI
• 5856bb4 Another attempt to fix Linux CI
• a1600e6 Another attempt to fix Linux CI
• c3e6bd4 Another attempt to fix Linux CI
• a02f198 Another attempt to fix Linux CI
• c138cfe Another attempt to fix Linux CI
• 45d2d10 Another attempt to fix Linux CI
• 16b11e7 Another a temp to run Linux tests...
• 6134719 Replace python-gnomekeyring with python-keyring

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

[brjsp]

I maintain an unofficial openSUSE RPM package for Bitwarden and don't know whether this issue affects us, but can say for certain that this commit is borked because the bot forgot to update also jslib/electron/package.json.