[Snyk] Fix for 1 vulnerabilities

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	768/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: eslint

The new version differs by 250 commits.

• 3dd6741 7.0.0
• 9a722f9 Build: changelog update for 7.0.0
• b98d8bd Upgrade: eslint-release@2.0.0 (#13271)
• 4c0b028 Fix: remove Node.js and CommonJS category from build process (#13242)
• 401a687 Chore: fix rules list for prereleases (#13230)
• 4ef6158 Breaking: espree@7.0.0 (#13270)
• b5c8d73 Docs: update 7.0.0 migration guide for consistency (#13267)
• 356fdb4 Docs: add migration guide (#12692)
• 015edf6 Sponsors: Sync README with website
• fdfa364 7.0.0-rc.0
• 8d1b4db Build: changelog update for 7.0.0-rc.0
• 0b1d65a Update: Improve report location for array-callback-return (refs #12334) (#13109)
• d85e291 Fix: yoda left string fix for exceptRange (fixes #12883) (#13052)
• 2ce6bed Chore: added tests for nested arrays (#13145)
• d3aac53 Update: report backtick loc in no-unexpected-multiline (refs #12334) (#13142)
• 8e7a2d9 Fix: func-call-spacing "never" reports wrong message (fixes #13190) (#13193)
• bcafd0f Update: Add ESLint API (refs New: ESLint Class Replacing CLIEngine eslint/rfcs#40) (#12939)
• 3eeae56 Upgrade: some (dev) deps (#13155)
• 6b7030b Chore: Run tests on Node.js v14 (#13210)
• ebc28d7 Fix: Remove default .js from --ext CLI option (#13176)
• 5c1bdeb Update: Improve report location for getter-return (refs #12334) (#13164)
• 56d2bee Docs: fix typos (#13204)
• e13256e Chore: use espree.latestEcmaVersion in config-initializer (#13157)
• e4f57b7 Chore: add nested array tests for array-element-newline (#13161)

See the full diff

Package name: ora

The new version differs by 21 commits.

• 1ad2eac 4.0.3
• 090860b Meta tweaks
• a4b2253 Fix `discardStdin` option (#135)
• 974630f 4.0.2
• 17761e9 Fix handling of Ctrl+C on spinners beyond first one (#131)
• 8779c68 4.0.1
• 4a8cd09 Set the correct interval when changing spinner by name (#128)
• b4ed2e8 4.0.0
• 6459090 Require Node.js 8
• b1f140b Discard stdin by default (#112)
• 8bcde17 Hide `prefixText` when it's an empty string (#124)
• b653b5a Fix Typescript definition for the `frame` method (#126)
• ad324dc Set the correct interval when changing spinner (#125)
• 38c2be9 Add related project to the readme (#119)
• 8545522 Add FAQ entry to the readme
• 3ee8c55 Improve the interactive check
• 603469f Fix readme typo (#115)
• 9e479d9 Enable the repo sponsor button
• 7339cfa Document how to change the color of the text
• 9a236f3 Add Node.js 12 to testing (#110)
• 1b37b54 Improve tests (#108)

See the full diff

Package name: snyk

The new version differs by 250 commits.

• 3f52bdc Merge pull request #1669 from snyk/fix/dont-fail-on-request-big-payload
• 47e106e fix: don't fail on request's big payload
• 1228b55 Merge pull request #1624 from snyk/chore/cli-alert-improvement
• fccd907 Merge pull request #1666 from snyk/chore/bump-cpp-test-timeout
• 6772a3e Merge pull request #1649 from snyk/chore/deps-update
• 89a7767 chore: update dependencies
• eaf4915 test: wrap pagerduty await in try-catch, remove condition
• 0576431 test: add pagerduty, check if test is running before attemmpting rerun
• a08a938 chore: bump flaky cpp test timeout
• ebb8dd7 Merge pull request #1656 from snyk/feat/protect-prime-time
• 69cd590 test: fix flakey json output test
• 3021bb2 Merge pull request #1663 from snyk/fix/upgrade-snyk-gradle-plugin
• a988600 Merge pull request #1654 from snyk/feat/iac-experimental-terraform-support
• b455497 feat: iac experimental tf support
• 4848b7e chore: run tests in packages in CI
• 3e7e99e feat: implement snyk protect
• bb233f1 chore: enable prettier formatting in packages
• fe0183d test: enable jest testing in snyk-protect workspace
• 40ec817 test: test fixture for snyk protect
• 7dfd3ea Merge pull request #1661 from snyk/test/fix-flake-with-dev-count-analysis
• 02c99b8 test: remove tests previously migrated to jest
• e203fd1 test: set timeout in beforeAll
• d42f6d9 fix: update snyk-gradle-plugin to 3.13.2
• 8cd9fbf Merge pull request #1662 from snyk/test/add-longer-timeouts

See the full diff

Package name: tap

The new version differs by 250 commits.

• bc49fb7 15.0.0
• 4378608 remove publishConfig beta tag
• 2c2e75f provide mkdirRecursive polyfill for old node versions
• 8f4c855 correctly specify 10.0.x versions
• 5e61672 update deps
• c44c418 Support 10.0 and test in CI
• dc5c841 tcompare@5.0.4
• 385b6d2 Add .taprc.yml/yaml handling to change log
• 4f87466 just run regular test script as snap script
• 315a921 delete FORCE_COLOR/NO_COLOR rather than setting to '0'
• 564e96f Add detection for .yaml and .yml
• 75bae93 update cli doc
• c1289bf 15.0.0-3
• d6fe32f Do not CI on node 10
• d2e0428 do not use equals() alias in self-test
• 3f787c4 tell npm to be colorful in CI
• 1512818 run tests with color on github actions
• 4626fa1 Docs: update documentation for tap v15
• 02d536b libtap@1.0.1
• f7c7c58 update cli doc
• 2aa497c 15.0.0-2
• 8d7f62e Add support for overriding libtap's internal settings
• 29eed63 new snapshot folder layout
• 3a28d4d update libtap git ref to isaacs/tap-v15-prep branch

See the full diff

Package name: yargs

The new version differs by 80 commits.

• aa09faf chore: release 15.0.1 (#1480)
• 6a9ebe2 fix(deps): cliui, find-up, and string-width, all drop Node 6 support (#1479)
• 5cc2b5e chore: release 15.0.0 (#1462)
• 62a114a force build
• 1840ba2 feat: expose `Parser` from `require('yargs/yargs')` (#1477)
• afd5b48 fix(docs): update boolean description and examples in docs (#1474)
• c10c38c feat(deps)!: yargs-parser now throws on invalid combinations of config (#1470)
• 0cba424 build: switch to release-please for releases (#1471)
• 445bc58 chore: update engines to note Node 6 is dropped (#1469)
• 52d875a test: add additional test for 1459
• 12c82e6 fix: stop-parse was not being respected by commands (#1459)
• b4812ac test: add tests for argsert warning to display positional information (#1468)
• 10f10ee test: cover missing filter arg in obj-filter (#1467)
• cb0396f build: switch to c8 for coverage (#1464)
• ebee59d fix!: update to yargs-parser with fix for array default values (#1463)
• 5120aec test: adds missing array choice regression test (#1447)
• 2ba8ce0 chore!: drop Node 6 support (#1461)
• cb64329 build: configure release-please
• 0d3642b refactor!: remove package.json-based parserConfiguration (#1460)
• 9adf22e doc(webpack): webpack example (#1436)
• 7e1c8fc Add missing french translation (#1456)
• b1b156a fix(docs): TypeScript import to prevent a future major release warning (#1441)
• bc3c4d1 chore(release): 14.2.0
• 4d21520 feat(deps): introduce yargs-parser with support for unknown-options-as-args (#1440)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic