[Snyk] Fix for 1 vulnerabilities

[marcusrc]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	461/1000 Why? Recently disclosed, Has a fix available, CVSS 3.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-DEBUG-3227433	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: eslint

The new version differs by 250 commits.

• 439e8e6 4.7.0
• 2ec62f9 Build: changelog update for 4.7.0
• 787b78b Upgrade: Espree v3.5.1 (fixes #9153) (#9314)
• 1488b51 Update: run rules after `node.parent` is already set (fixes #9122) (#9283)
• 4431d68 Docs: fix wrong config in max-len example. (#9309)
• 9d1df92 Chore: Revert "avoid handling Rules instances in config-validator" (#9295)
• 7d24dde Docs: Fix code snippet to refer to the correct option (#9313)
• 12388d4 �Chore: rewrite parseListConfig for a small perf gain. (#9300)
• ce1f084 Update: fix MemberExpression handling in no-extra-parens (fixes #9156)
• 0c720a3 Update: allow autofixing when using processors (fixes #7510) (#9090)
• 838df76 Chore: upgrade deps. (#9289)
• f12def6 Update: indent flatTernary option to handle `return` (fixes #9285) (#9296)
• e220687 Fix: remove autofix for var undef inits (fixes #9231) (#9288)
• 002e199 Docs: fix no-restricted-globals wrong config. (#9305)
• fcfe91a Docs: fix wrong config in id-length example. (#9303)
• 2731f94 Update: make newline-per-chained-call fixable (#9149)
• 61f1093 Chore: avoid monkeypatching Linter instances in RuleTester (#9276)
• 28929cb Chore: remove Linter#reset (refs #9161) (#9268)
• abc8634 Build: re-run browserify when generating site (#9275)
• 7685fed Fix: IIFE and arrow functions in no-invalid-this (fixes #9126) (#9258)
• 7c95d5d Chore: avoid handling Rules instances in config-validator (#9277)
• 2b1eba2 Chore: enable eslint-plugin/no-deprecated-context-methods (#9279)
• 981f933 Fix: reuse the AST of source code object in verify (#9256)
• cd698ba Docs: move RuleTester documentation to Node.js API page (#9273)

See the full diff

Package name: mocha

The new version differs by 250 commits.

• d69bf14 Release v4.0.0
• 171b9f9 pfix "prepublishOnly" potential portability problem
• 60e39d9 Update link to wiki (GitHub at the leading `--`)
• 804f9d5 Update link because GitHub ate the leading `--`
• 3326c23 update CHANGELOG for v4.0.0 [ci skip]
• 6dd9252 add link to wiki on --compilers deprecation
• 96318e1 Deprecate --compilers
• 92beda9 drop bower support
• 58a4c6a remove unused .npmignore
• 7af6611 kill Date#toISOString shim
• 43501a2 reduce noise about slow tests; make a few tests faster, etc.
• fa228e9 update --exit / --no-exit integration test for new default behavior
• 3fdd3ff Switch default from forced exit to no-exit
• c5d69e0 add integration tests for --exit/--no-exit
• 3a7f8dc enhance runMochaJSON() helper by returning the subprocess instance
• 0690d1a remove unused manual tests which remained in test/misc/
• 49e01d5 move the "only" specs out of test/misc/only/ and into test/only/
• 16ffca2 remove shims to avoid decrease in coverage
• 1f3b39a upgrade diff
• e6e3519 upgrade commander
• f1efc14 remove special treatment of unsupported node version in travis before-install script
• bc50020 upgrade debug
• 1103f9c upgrade coveralls
• f09ebf6 remove readable-stream

See the full diff

Package name: supertest

The new version differs by 24 commits.

• 199506d Prepare 3.0.0 release. Small readme updates, update dev libs.
• 1d82e5b Allow TestAgent pass a cert and key to request (#373)
• 188f8f2 Update readme (#392)
• bd63752 Use superagent 3 (#400)
• 3c16aa1 Couple small updates to README
• 5930d2c Change package.json to 2.0.1 version and update engines field.
• 4d21f0d Remove node 0.12 from travis testing. A little early for 0.12 EOF but I want the new eslint libs which don't support 0.12.
• 6fcd9b3 Update dev deps. Fix couple lint issues. Add node v6 and remove 0.10 for travis tests.
• 2026549 Prepare for 2.0.1 release.
• e07e981 fix request with content-length > 0 and content-encoding: gzip (#371)
• cf9f991 Update Release History for v2.0.0
• df45dd7 Handle server not-running & superagent system errors (#348)
• 054ad57 Prepare for 2.0.0 release.
• 7ca0574 Upgrade superagent to 2.x (#347)
• 7d35f22 Change 'super-agent' to 'superagent' in Readme. (#343)
• d0c1457 Fix eslint checks .pem (#331)
• 076ce21 Fix typo on line 74 (#330)
• a920af5 MISC Update dev deps, small updates to README.
• 25665c0 Fix readme for .expect(fn), fixes env PASSWORD set but not exist auth mrvautin/adminMongo#253 ([Snyk] Security upgrade mongodb from 2.2.36 to 3.1.3 mrvautin/adminMongo#262)
• 480b9bb Merge pull request #324 from visionmedia/eslint-refactor
• af3c013 Slight cleanup to esline rules. Remove some overrides, refactor logic in _assertHeader function.
• 1849094 Refactor source code to use eslint with airbnb legacy rules.
• ecced93 Merge pull request #318 from oskarcieslik/patch-1
• a1533e5 Changed example with cookie-parser

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)