Security: Upgrade boom and hawk to fix hoek

[JamesJansson]

Versions

v1.7.4

Repro steps

CLI currently uses old Boom and Hawk dependencies, which loads an old version of Hoek which is vulnerable.

Desired behavior

Upgrade to latest Boom and Hawk.

[literalpie]

Is there a temporary workaround for this? any way for a library that depends on CLI to protect itself from this vulnerability?

[hansl]

@literalpie we don't use it, directly or indirectly. NPM isn't smart enough to know this, so shows the vulnerability. For now it's simply a warning. We're working on it.