[Snyk] Security upgrade hexo-renderer-marked from 2.0.0 to 3.0.0

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • docs/package.json
  • docs/package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Issue	Breaking Change	Exploit Maturity
	Regular Expression Denial of Service (ReDoS ) SNYK-JS-MARKED-584281	Yes	No Known Exploit

Commit messages

Package name: hexo-renderer-marked

The new version differs by 76 commits.

• c742ef2 Merge pull request JSON import bugfix & speedup HumanSignal/label-studio#155 from curbengh/v3.0.0
• bfa348b release: 3.0.0
• 411bfd6 chore: requires Node 10+
• 2aaaba7 ci(travis): drop deprecated Node 13
• a2cf33e Merge pull request Fix/disabled ui HumanSignal/label-studio#152 from hexojs/dependabot/npm_and_yarn/mocha-8.0.1
• 27a9820 chore(deps-dev): bump mocha from 7.2.0 to 8.0.1
• 3f5c08f Merge pull request version bump HumanSignal/label-studio#154 from curbengh/fix-test
• b6dd143 test: fix failing test after deps update
• 75956a0 chore(deps): bump hexo-util from 1.9.0 to 2.1.0 (NPM ignore HumanSignal/label-studio#148)
• dc20bdb chore(deps-dev): bump eslint from 6.8.0 to 7.2.0 (Feature/pairwise comparison HumanSignal/label-studio#151)
• 54a2e8c ci(travis): drop Node 8 and add Node 14 (typo: selelectWithoutLabel HumanSignal/label-studio#146)
• 024f6d1 revert: feat: promisify (Multiple tasks in the same page HumanSignal/label-studio#145)
• f685924 chore(deps): bump marked from 0.8.2 to 1.0.0 (Release/0.3.0 alpha HumanSignal/label-studio#144)
• 40d8ca4 chore(deps-dev): bump mocha from 6.2.2 to 7.0.0 (disable editing, this is useful for read-only completions or predict… HumanSignal/label-studio#135)
• c8cc683 refactor: remove marked.setOptions.highlight (audio hotkey for play/pause HumanSignal/label-studio#134)
• 7c7f513 Merge pull request Grid view for completions and predictions HumanSignal/label-studio#133 from curbengh/marked-filter-docs
• 3877cb0 style: minor typo
• cc9be71 Merge pull request Connect your running models for prediction prelabeling, active learning and retraining HumanSignal/label-studio#127 from curbengh/modifyAnchors-type
• b8f4a3c docs: marked:renderer filter
• a93ebeb Merge pull request Release 0.2.2 HumanSignal/label-studio#132 from curbengh/async
• 2b85dd0 fix: register renderer in async mode
• 262324d test: remove extra async keyword
• f5ee328 chore(dev-deps): update eslint-config-hexo from 4.0 to 4.1
• a9afdd9 feat: promisify

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic