[Snyk] Upgrade yaml from 2.4.2 to 2.5.0

[psturc]

Snyk has created this PR to upgrade yaml from 2.4.2 to 2.5.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 4 versions ahead of your current version.

• The recommended version was released on 2 months ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Server-side Request Forgery (SSRF) SNYK-JS-AXIOS-7361793	761	Proof of Concept
	Asymmetric Resource Consumption (Amplification) SNYK-JS-BODYPARSER-7926860	761	No Known Exploit
	Uncontrolled resource consumption SNYK-JS-BRACES-6838727	761	Proof of Concept
	Improper Input Validation SNYK-JS-FOLLOWREDIRECTS-6141137	761	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	761	Proof of Concept
	Path Traversal SNYK-JS-WEBPACKDEVMIDDLEWARE-6476555	761	Proof of Concept
	Open Redirect SNYK-JS-EXPRESS-6474509	761	No Known Exploit
	Cross-site Scripting SNYK-JS-EXPRESS-7926867	761	No Known Exploit
	Information Exposure SNYK-JS-FOLLOWREDIRECTS-6444610	761	Proof of Concept
	Information Exposure SNYK-JS-FOLLOWREDIRECTS-6444610	761	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHTOREGEXP-7925106	761	Proof of Concept
	Cross-site Scripting (XSS) SNYK-JS-SERIALIZEJAVASCRIPT-6147607	761	Proof of Concept
	Cross-site Scripting (XSS) SNYK-JS-WEBPACK-7840298	761	Proof of Concept
	Cross-site Scripting SNYK-JS-SEND-7926862	761	No Known Exploit
	Cross-site Scripting SNYK-JS-SERVESTATIC-7926865	761	No Known Exploit

Release notes

Package name: yaml

• 2.5.0 - 2024-07-24
  
  • Add --indent option to CLI tool (#559, with thanks to @ danielbayley)
  • Require newline in all cases for props on block sequence (#557)
  • Always reset indentation in lexer on ... (#558)
  • Ignore minContentWidth if greater than lineWidth (#562)
  • Drop unused Collection.maxFlowStringSingleLineLength (#522, #421)
• 2.4.5 - 2024-06-08
  
  • Improve tab handling (#553, yaml-test-suite tests DK95 & Y79Y)
• 2.4.4 - 2024-06-08
  

  With special thanks to @ RedCMD for finding and reporting all of the following:

  • Allow comment after top-level block scalar with explicit indent indicator (#547)
  • Allow tab as indent for line comments before nodes (#548)
  • Do not allow tab before block collection (#549)
  • In flow collections, allow []{} immediately after : with plain key (#550)
  • Require indentation for ? explicit-key contents (#551)
  • Require indentation from block scalar header & flow collections in mapping values (#553)
• 2.4.3 - 2024-06-02
  
  • Improve error when parsing a non-string value (#459)
  • Do not parse -.NaN or +.nan as NaN (#546)
  • Support # within %TAG prefixes with trailing #comments
  • Check for non-node complex keys when stringifying with simpleKeys (#541)
• 2.4.2 - 2024-04-28
  
  • Restrict YAML 1.1 boolean strings to their explicit capitalization (#530)
  • Add sponsorship by Scipress (#536)

from yaml GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs