[Snyk] Security upgrade snyk-nuget-plugin from 1.23.5 to 1.25.3

[shaneomatz]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Prototype Pollution SNYK-JS-XML2JS-5414874	No	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: snyk-nuget-plugin

The new version differs by 14 commits.

• d74e05d fix: lodash is not a dev dep, but used in prod (#142)
• f433837 Feat/secrets scanning (#140)
• 6c0675b Update package.json (#139)
• dbb6449 Revert "Create pr-housekeeping.yml (#137)" (#138)
• 9e042e1 Create pr-housekeeping.yml (#137)
• ebcfc70 fix: package.json to reduce vulnerabilities (#136)
• 44cdf56 feat: add broken link github action (#133)
• 3c90f9d fix: stringify-range-error (#131)
• 4931e94 docs: update badge (#130)
• a68d283 fix: fix ci (#129)
• 0b60f3a feat: fix ci (#128)
• a0a10b9 fix: code owners (#127)
• 75b5d2d fix: code owners (#126)
• e0df00f fix: upgrade typescript (#124)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Prototype Pollution