[Snyk] Fix for 1 vulnerabilities

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	768/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: chalk

The new version differs by 53 commits.

• 3fca615 2.0.0
• f66271e Add tagged template literal (process.ARGV not defined in node 0.6 hubotio/hubot#163)
• 23ef1c7 fix linter errors
• c015568 add rainbow example
• 09fb2d8 Re-implement `chalk.enabled` (Expose IRC’s send command hubotio/hubot#160)
• 608242a spoof supports-color
• 18f2e7c add host information output
• 523b998 Revert "TEMPORARY: emergency travis CI fix (see comments)"
• 54975fb TEMPORARY: emergency travis CI fix (see comments)
• 1d73b21 Improve readme
• 6f4d6b3 Bump dependencies
• 8702496 Remove `chalk.styles`
• 0412cdf Minor code improvements
• 249b9ac ES2015ify the codebase
• cb3f230 Add RGB (256/Truecolor) support (Updated node-irc dependency version to address Issue #139.  hubotio/hubot#140)
• dbae68d Update dependent package count in the readme (Ignore also direct messages in gtalk hubotio/hubot#154)
• 9b60021 Drop support for Node.js 0.10 and 0.12
• 0d21449 check parent builder object for enabled status (Added options for fake ssl, flood protection and debug for the IRC client hubotio/hubot#142)
• 5a69476 add XO badge
• 492f11f add example file
• 4ce73b6 make XO happy
• 7c02cf4 Add log statement to chalk examples (Correctly replace @mentions in Talker adapter hubotio/hubot#129)
• 835ca3d You've just reached 10,000 dependent modules. (Multiple adapters? hubotio/hubot#122)
• 74c087d minor doc improvements (Add Jaconda.im support to Hubot hubotio/hubot#120)

See the full diff

Package name: nyc

The new version differs by 127 commits.

• bebf4d6 chore(release): 15.0.0
• 2931730 chore: Update to final releases of dependencies (query: how to call a function written in 1 file from other file hubotio/hubot#1245)
• d44ff19 chore: Update node-preload and use process-on-spawn (Azure deployment instructions hubotio/hubot#1243)
• 5258e9f feat: Filenames relative to project cwd in coverage reports (unable to load scripts for hubot hubotio/hubot#1212)
• 6039f29 chore: Unpin test-exclude, update to latest pre-releases (Improve systemd example init script. hubotio/hubot#1240)
• f3c9e6c chore: Temporarily pin test-exclude (Replace log with npm log hubotio/hubot#1239)
• 28ed746 chore: Lazy load modules that are rarely/never needed in test processes. (How to trigger a chain? hubotio/hubot#1232)
• 7307626 chore: Remove cp-file module (#803 breaks tests that assume receive is sync hubotio/hubot#1230)
• dfd629d fix: Better error handling for main execution, reporting (Docker support hubotio/hubot#1229)
• 549c953 chore: Update dependencies, pin find-cache-dir (docs: add link to symphony adapater hubotio/hubot#1228)
• a1dee03 chore: Update yargs (Coffeescript Interpreter Oddities hubotio/hubot#1224)
• 8078a79 chore: Fix 404 in README.md. (Hubot 2.19.0 attempts to load hubot-scripts-stock without depending on it hubotio/hubot#1220)
• 7a02cb7 chore: Add enterprise language (Turn off 1 on 1 conversations hubotio/hubot#1217)
• ea94c7f chore: Remove unused functions (Does hubot have a similar feature/workaround to botkit's conversation feature? (& making hubot forget responses) hubotio/hubot#1218)
• 53c66b9 docs: `npm home nyc` goes to github master branch README (Send private message (DM) to user, not id hubotio/hubot#1201)
• cf5e5d3 chore: Update dependencies
• 8411a26 fix: Correct handling of source-maps for pre-instrumented files (Add link to adapter for Symphony hubotio/hubot#1216)
• f890360 docs: Fix URL to default excludes in README.md (Update chef links and add runit as a init system hubotio/hubot#1214)
• 3726bbb chore: Update to async version of istanbul-lib-source-maps (Optionally require pmx for http analysis through pm2 hubotio/hubot#1199)
• 0efc6d1 chore: Tweak arguments for async coverage data readers (Was middleware intended to work on the HTTP path? hubotio/hubot#1198)
• cc77e13 chore: Add `use strict` to all except fixtures (lolz hubotio/hubot#1197)
• bcbe1df chore: Update dependencies (Fixed broken link on the deploying to hubot page hubotio/hubot#1196)
• 2735ee2 chore: 100% coverage (robot.brain.save() does not make the data persistent. hubotio/hubot#1195)
• fd40d49 feat: Use @ istanbuljs/schema for yargs setup (Run function after delay hubotio/hubot#1194)

See the full diff

Package name: semantic-release

The new version differs by 132 commits.

• 45695b9 fix(package): update @ semantic-release/commit-analyzer to version 8.0.0
• 3c7b114 fix(package): update @ semantic-release/release-notes-generator to version 9.0.0
• f2b5826 fix(package): update @ semantic-release/npm to version 7.0.0
• c48bd3a fix(package): update @ semantic-release/github to version 7.0.0
• bc97537 test: fix copy/paste typo in test titles
• c7e461d docs: add `@ saithodev/semantic-release-gitea` to community plugins
• ef1b8a0 chore(package): update ava to version 3.1.0
• bec57cd chore: require Node.js >=10.18
• c6b1076 fix: correct error when remote repository has no branches
• b54b20d fix: use `--no-verify` when testing the Git permissions
• 88fe819 docs: fix typo
• 559c152 docs(README): update minimal required Node version / FAQ link (Need help. Newbie. hubotio/hubot#1422)
• 31e7876 docs(travis): build on all branches by default
• 8c0490d docs: replacing firefox plugin in the list (Doc parser: don't strip comment leader twice hubotio/hubot#1416)
• 6b5b02e fix: fetch tags on repo cached by the CI
• 28b5480 docs: correct plugin execution order
• 3739ab5 fix(package): update env-ci to version 5.0.0
• 11665b2 chore(package): update dependencies
• 0785a84 fix: update plugin versions
• 152bf45 Merge remote-tracking branch 'origin/beta'
• 3ba8f2a Merge remote-tracking branch 'origin/master' into beta
• 9772563 fix: look also for previous prerelease versions to determine the next one
• 61665be fix: correct log when adding channel to tag
• a8747c4 fix: verify is branch is up to date by comparing remote and local HEAD

See the full diff

Package name: standard

The new version differs by 250 commits.

• 558df00 14.3.2
• a8e318e Add changelog entry for 14.3.2
• 133a4c9 Merge pull request Massive logger messages hubotio/hubot#1492 from standard/eslint68
• a2df23b Upgrade ESLint to 6.8.x
• fb7e2a3 remove sponsor
• ecda198 Update README.md
• 4bc1671 Update README.md
• e514626 add sponsor
• 2b86c68 spacing
• a702d2e Reposition CodeFund sponsorship link (Standardize reaction receiving and posting hubotio/hubot#1446)
• a28b5d0 Reposition CodeFund sponsorship link
• 0f86fb9 Merge pull request Adding/removing a listener while handling a message causes unexpected behaviour hubotio/hubot#1445 from ZY2071/master
• b4726d7 perf: Change the examples for rule 'No octal literals' .
• 4bdaa2f perf: make the rule 'No octal literals' more specific.
• f5d758e Update README-ja.md for d901c54 ([spam] hubotio/hubot#1435)
• be249c3 Update README-ja.md for d901c54
• cfb84fa Update README.md with working Typescript setup (how to avoid hubot printing a default JSON output for every question asked ?? hubotio/hubot#1434)
• f4d3113 Update links to correct organization in README (Support for Google Hangouts Chat hubotio/hubot#1433)
• d901c54 Update README.md with working Typescript setup
• 809e78a Update README-ja.md for 3e6b299 (message when you do not have an answer hubotio/hubot#1432)
• 91bc8fb Update README-ja.md for 3e6b299
• 3e6b299 Update README.md
• d5c7ded Add CodeFund sponsorship message to README (Update Express to latest hubotio/hubot#1425)
• c4f168e fix typo (my win7 system hubot setup The following problems occur? hubotio/hubot#1423)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

[stale]

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.