[Snyk] Security upgrade simple-git from 2.48.0 to 3.5.0

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • packages/nodes-base/package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	691/1000 Why? Recently disclosed, Has a fix available, CVSS 8.1	Command Injection SNYK-JS-SIMPLEGIT-2434306	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: simple-git

The new version differs by 86 commits.

• 66c903c Merge pull request UnhandledPromiseRejectionWarning: RepositoryNotFoundError: No repository for "CredentialsEntity" was found. #776 from steveukx/changeset-release/main
• 4fc3747 Version Packages
• 9665dee Merge pull request ✨ GoogleContacts-Node #775 from steveukx/snyk/clone
• 2040de6 Prevent use of `--upload-pack` as a command in `git.clone` to avoid potential accidental command execution.
• 9bf9baa Merge pull request [packages/editor-ui] Upgrade typescript to version 3.9.7 #772 from steveukx/changeset-release/main
• 64c41db Version Packages
• 357b4de Merge pull request [packages/core] Upgrade typescript to version 3.9.7 #771 from steveukx/feat/status-with-nulls
• ed412ef Status Summary should use null terminators to allow files with spaces in their names
• 94c2462 Merge pull request ✨ Add CrateDB node #768 from steveukx/changeset-release/main
• 9113366 Version Packages
• 372efa0 Merge pull request ⚡ Reuse trigger and target on Zendesk-Trigger #767 from steveukx/feat/fix-fetch-snyk
• d119ec4 Prevent use of `--upload-pack` as a command in `git.fetch` to avoid potential accidental command execution.
• e4ff627 Merge pull request [packages/node-dev] Upgrade @types/node to version 14.0.23 #761 from steveukx/changeset-release/main
• fcc7618 Version Packages
• 7c24bb0 Merge pull request [packages/core] Upgrade @types/node to version 14.0.23 #760 from steveukx/fix/project-readme
• 80651d5 Remove pre-publish step of copying `readme.md`, no longer required
• 0d0c198 Merge pull request [packages/cli] Upgrade @types/node to version 14.0.23 #759 from steveukx/changeset-release/main
• 6838e24 Version Packages
• d53875f Merge pull request 🐛 fixes bug with latin characters #758 from steveukx/fix/project-readme
• ac4f38f Move workspace readme into the `simple-git` package, symlink to it from the workspace
• e9f0461 Move workspace readme into the `simple-git` package, symlink to it from the workspace
• bcfa6f8 Merge pull request ✨ TravisCI-Node #756 from steveukx/changeset-release/main
• 7a29566 Version Packages
• 50a8a6b Merge pull request ⏰ Add max execution time for Workflows #755 from steveukx/release-attempt

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

[CLAassistant]

Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
_{You have signed the CLA already but the status is still pending? Let us recheck it.}

[janober]

Got released with n8n@0.171.0