[Snyk] Security upgrade @oclif/plugin-commands from 3.1.4 to 3.3.3

[jercle]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	681/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.2	Command Injection SNYK-JS-LODASHTEMPLATE-1088054	No	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: @oclif/plugin-commands

The new version differs by 73 commits.

• 62d4516 chore(release): 3.3.3 [skip ci]
• b5e772f fix: use lodash instead of lodash.template (#662)
• d430c8f chore(dev-deps): bump oclif from 4.9.0 to 4.10.1 (#656)
• aeaf453 chore(release): 3.3.2 [skip ci]
• fac0690 fix(deps): bump @ oclif/core from 3.26.4 to 3.26.5 (#657)
• 03b533c chore(dev-deps): bump eslint-config-oclif from 5.1.3 to 5.2.0 (#658)
• c198e0e chore(dev-deps): bump eslint-config-oclif-typescript from 3.1.6 to 3.1.7 (#659)
• 151aa3c chore(dev-deps): bump @ oclif/test from 3.2.11 to 3.2.12 (#660)
• fa0a002 chore(dev-deps): bump @ oclif/test from 3.2.10 to 3.2.11 (#652)
• 5d8d7c2 chore(dev-deps): bump eslint-config-oclif from 5.1.2 to 5.1.3 (#653)
• 1163e7e chore(dev-deps): bump eslint-config-oclif-typescript from 3.1.5 to 3.1.6 (#654)
• 95d6cc6 chore(dev-deps): bump oclif from 4.8.5 to 4.9.0 (#655)
• 4f1f33a chore(dev-deps): bump @ oclif/test from 3.2.9 to 3.2.10 (#648)
• 0de33a9 chore(dev-deps): bump eslint-config-oclif from 5.1.1 to 5.1.2 (#649)
• 9550f68 chore(dev-deps): bump oclif from 4.8.2 to 4.8.5 (#650)
• b6c3210 chore(dev-deps): bump eslint-config-oclif-typescript from 3.1.3 to 3.1.5 (#651)
• 2e1192b chore(dev-deps): bump typescript from 5.4.4 to 5.4.5 (#642)
• eb152c1 chore(dev-deps): bump oclif from 4.7.6 to 4.8.2 (#643)
• 778d956 chore(dev-deps): bump @ oclif/test from 3.2.8 to 3.2.9 (#644)
• 22b3cbb chore(release): 3.3.1 [skip ci]
• 9aa165a fix(deps): bump @ oclif/core from 3.26.0 to 3.26.2 (#645)
• ae05e3c chore(dev-deps): bump @ types/node from 18.19.30 to 18.19.31 (#646)
• 65d9146 chore(release): 3.3.0 [skip ci]
• 1c0831d feat: export command (#641)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Command Injection

[sonarcloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
0.0% Duplication on New Code

See analysis details on SonarCloud