[Snyk] Security upgrade oclif from 4.4.16 to 4.6.0

[jercle]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	661/1000 Why? Recently disclosed, Has a fix available, CVSS 7.5	Uncontrolled resource consumption SNYK-JS-BRACES-6838727	No	No Known Exploit
	661/1000 Why? Recently disclosed, Has a fix available, CVSS 7.5	Inefficient Regular Expression Complexity SNYK-JS-MICROMATCH-6838728	No	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: oclif

The new version differs by 78 commits.

• 061c396 chore(release): 4.6.0 [skip ci]
• 30a8a53 feat: no yeoman (#1321)
• bbdf522 chore: add CONTRIBUTING.md [skip ci]
• c19595f Merge pull request #1334 from oclif/dependabot-npm_and_yarn-oclif-test-3.2.5
• 31bfac5 chore(release): 4.5.7 [skip ci]
• eb4de53 Merge pull request #1335 from oclif/dependabot-npm_and_yarn-aws-sdk-client-cloudfront-3.535.0
• c3ecd89 Merge pull request #1336 from oclif/dependabot-npm_and_yarn-eslint-config-oclif-typescript-3.1.2
• 514c4ab fix(deps): bump @ aws-sdk/client-cloudfront from 3.525.0 to 3.535.0
• c3e82fe chore(release): 4.5.6 [skip ci]
• 376bcd9 Merge pull request #1337 from oclif/dependabot-npm_and_yarn-aws-sdk-client-s3-3.535.0
• 69b8209 fix(deps): bump @ aws-sdk/client-s3 from 3.515.0 to 3.535.0
• 0fbcd35 chore(release): 4.5.5 [skip ci]
• 85a5365 Merge pull request #1338 from oclif/dependabot-npm_and_yarn-oclif-plugin-help-6.0.18
• e927d72 fix(deps): bump @ oclif/plugin-help from 6.0.14 to 6.0.18
• 8bf3192 chore(dev-deps): bump eslint-config-oclif-typescript from 3.1.0 to 3.1.2
• 9539cb6 chore(dev-deps): bump @ oclif/test from 3.2.1 to 3.2.5
• 07728ee chore: update bug_report.md
• ecb754b chore(release): 4.5.4 [skip ci]
• 3f92e52 fix: broken links (#1333)
• 48b6b77 chore(release): 4.5.3 [skip ci]
• d228797 fix(deps): bump @ oclif/plugin-not-found from 3.0.11 to 3.0.14 (#1330)
• 583e84a Merge pull request #1326 from oclif/dependabot-npm_and_yarn-types-semver-7.5.8
• d7693dd Merge pull request #1327 from oclif/dependabot-npm_and_yarn-oclif-test-3.2.1
• f0d546d Merge pull request #1328 from oclif/dependabot-npm_and_yarn-types-node-18.19.22

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Uncontrolled resource consumption

[sonarcloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
0.0% Duplication on New Code

See analysis details on SonarCloud