[Snyk] Fix for 24 vulnerabilities

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	Yes	Proof of Concept
	589/1000 Why? Has a fix available, CVSS 7.5	Denial of Service (DoS) SNYK-JS-FILETYPE-2958042	Yes	No Known Exploit
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Information Exposure SNYK-JS-FOLLOWREDIRECTS-2332181	No	Proof of Concept
	344/1000 Why? Has a fix available, CVSS 2.6	Information Exposure SNYK-JS-FOLLOWREDIRECTS-2396346	No	No Known Exploit
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-GLOBPARENT-1016905	Yes	Proof of Concept
	484/1000 Why? Has a fix available, CVSS 5.4	Open Redirect SNYK-JS-GOT-2932019	Yes	No Known Exploit
	504/1000 Why? Has a fix available, CVSS 5.8	Prototype Pollution SNYK-JS-HIGHLIGHTJS-1045326	No	No Known Exploit
	479/1000 Why? Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-3050818	Yes	No Known Exploit
	506/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 3.7	Prototype Pollution SNYK-JS-MINIMIST-2429795	No	Proof of Concept
	589/1000 Why? Has a fix available, CVSS 7.5	Directory Traversal SNYK-JS-MOMENT-2440688	No	No Known Exploit
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-MOMENT-2944238	No	Proof of Concept
	539/1000 Why? Has a fix available, CVSS 6.5	Information Exposure SNYK-JS-NODEFETCH-2342118	No	No Known Exploit
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-NTHCHECK-1586032	Yes	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-POSTCSS-1255640	Yes	Proof of Concept
	601/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.6	Command Injection SNYK-JS-REACTDEVUTILS-1083268	Yes	Proof of Concept
	684/1000 Why? Has a fix available, CVSS 9.4	Arbitrary Code Execution SNYK-JS-SANITIZEHTML-585892	Yes	No Known Exploit
	619/1000 Why? Has a fix available, CVSS 8.1	Remote Code Execution (RCE) SNYK-JS-SHELLQUOTE-1766506	Yes	No Known Exploit
	624/1000 Why? Has a fix available, CVSS 8.2	Arbitrary File Overwrite SNYK-JS-TAR-1536528	Yes	No Known Exploit
	624/1000 Why? Has a fix available, CVSS 8.2	Arbitrary File Overwrite SNYK-JS-TAR-1536531	Yes	No Known Exploit
	410/1000 Why? Has a fix available, CVSS 3.7	Regular Expression Denial of Service (ReDoS) SNYK-JS-TAR-1536758	Yes	No Known Exploit
	639/1000 Why? Has a fix available, CVSS 8.5	Arbitrary File Write SNYK-JS-TAR-1579147	Yes	No Known Exploit
	639/1000 Why? Has a fix available, CVSS 8.5	Arbitrary File Write SNYK-JS-TAR-1579152	Yes	No Known Exploit
	639/1000 Why? Has a fix available, CVSS 8.5	Arbitrary File Write SNYK-JS-TAR-1579155	Yes	No Known Exploit
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-TRIM-1017038	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: gatsby

The new version differs by 250 commits.

• 0c6cd61 chore(release): Publish
• 5e8e621 chore: Update main README (#36954)
• 7130cd4 test(gatsby): Slices API integration tests (#36747)
• 6496eed chore(release): Publish next
• bc7ac84 chore: preserve previous webpack stats derived values, even if we restart webpack itself (#36980)
• 2b5af32 fix: drop `__renderedByLocation` prop when calculating slice props hashes and don't expose it to slice component (#36979)
• cc1ee9b chore(release): Publish next
• 6a53861 chore(gatsby-link): Correct type export (#36968)
• 0ad6314 fix(gatsby-graphiql-explorer): Use upstream exporter package (#36966)
• 964265c chore(release): Publish next
• b624442 chore: Update peerDeps (#36965)
• b2ab092 chore(release): Publish next
• e2a14bf feat(gatsby): Slices <> partial hydration interop (#36960)
• 0083e62 fix(deps): update starters and examples gatsby packages to ^4.24.7 (#36957)
• 68e9cab chore(changelogs): update changelogs (#36958)
• b9eb8d2 chore(deps): update dependency autoprefixer to ^10.4.13 for gatsby-plugin-sass (#36934)
• 58c37ea chore(deps): update dependency @ jridgewell/trace-mapping to ^0.3.17 for gatsby-legacy-polyfills (#36933)
• a5e4c47 fix(deps): update dependency body-parser to ^1.20.1 for gatsby-source-drupal (#36940)
• c86aa7e chore(docs): Add clarification for Pro Tip on Part 4 of tutorial (#36918)
• d5c775a feat(gatsby): handle graphql-import-node bundling (#36951)
• 59e2976 feat(gatsby-remark-embed-snippet): added csproj to language map so it will be recognized as xml (#36919)
• c8a7dda chore(docs): Valhalla Content Hub Reference Guide (#36949)
• 3044280 fix(gatsby): stitch slices if just page html was regenerating without any of used slices regenerating (#36950)
• 10abdcb chore(release): Publish next

See the full diff

Package name: gatsby-cli

The new version differs by 250 commits.

• 0c6cd61 chore(release): Publish
• 5e8e621 chore: Update main README (#36954)
• 7130cd4 test(gatsby): Slices API integration tests (#36747)
• 6496eed chore(release): Publish next
• bc7ac84 chore: preserve previous webpack stats derived values, even if we restart webpack itself (#36980)
• 2b5af32 fix: drop `__renderedByLocation` prop when calculating slice props hashes and don't expose it to slice component (#36979)
• cc1ee9b chore(release): Publish next
• 6a53861 chore(gatsby-link): Correct type export (#36968)
• 0ad6314 fix(gatsby-graphiql-explorer): Use upstream exporter package (#36966)
• 964265c chore(release): Publish next
• b624442 chore: Update peerDeps (#36965)
• b2ab092 chore(release): Publish next
• e2a14bf feat(gatsby): Slices <> partial hydration interop (#36960)
• 0083e62 fix(deps): update starters and examples gatsby packages to ^4.24.7 (#36957)
• 68e9cab chore(changelogs): update changelogs (#36958)
• b9eb8d2 chore(deps): update dependency autoprefixer to ^10.4.13 for gatsby-plugin-sass (#36934)
• 58c37ea chore(deps): update dependency @ jridgewell/trace-mapping to ^0.3.17 for gatsby-legacy-polyfills (#36933)
• a5e4c47 fix(deps): update dependency body-parser to ^1.20.1 for gatsby-source-drupal (#36940)
• c86aa7e chore(docs): Add clarification for Pro Tip on Part 4 of tutorial (#36918)
• d5c775a feat(gatsby): handle graphql-import-node bundling (#36951)
• 59e2976 feat(gatsby-remark-embed-snippet): added csproj to language map so it will be recognized as xml (#36919)
• c8a7dda chore(docs): Valhalla Content Hub Reference Guide (#36949)
• 3044280 fix(gatsby): stitch slices if just page html was regenerating without any of used slices regenerating (#36950)
• 10abdcb chore(release): Publish next

See the full diff

Package name: gatsby-plugin-google-analytics

The new version differs by 250 commits.

• 2cfb64b chore(release): Publish
• c132f2d feat(gatsby-plugin-google-gtag): Add `delayOnRouteUpdate` option (#37017)
• 3032a1b fix(gatsby): Use xstate `predictableActionArguments` & update to 4.34 (#36342)
• aca64b7 chore: Add constraints to renovate (#37047)
• f94db78 fix(gatsby-transformer-csv): Fix high memory consumption (#36610)
• f158930 test: e2e tests for Slices API (#36746)
• 9d67c13 chore(docs): Google Analytics: use gtag.js plugin (#36984)
• 8569655 chore(gatsby-plugin-google-analytics): Update `minimatch` (#37029)
• 086c862 fix(gatsby-core-utils): decode uri-encode filename for remote file (#35637)
• ccf56d5 chore: Add npm "engines" (#37046)
• 5772595 fix(gatsby-source-wordpress) pass store for auth (#37006)
• c411d69 chore(docs): Add `--` to quick start flags (#37041)
• 2a06fff chore(docs): Deployment Updates & Cleanup (#37038)
• 0fb0390 chore: Repository Cleanup (#37035)
• 88b9dc5 chore(gatsby-source-wordpress): remove runApisInSteps and call runApiSteps for each gatsby-node api (#37039)
• b69709c build: include e2e tests in renovate config (#37005)
• 8fc95f5 chore(docs): Clarify language in v4 to v5 migration guide (#37007)
• 1cfd9b8 chore(e2e-tests): Wait for route change on back/forward (#37033)
• 4842417 chore(docs): Add IE 11 note to v2 to v3 migration guide (#37022)
• 19dd1c4 fix(graphiql-explorer): Adjust env var truthiness logic (#37032)
• 57b37ae chore(changelogs): update changelogs (#37030)
• 58197a0 fix(docs): update forEach to use map (#37008)
• 3a4d333 chore: migrate from express-graphql to graphql-http (#37001)
• 5766694 chore(docs): Add overview video to release notes (+ other misc) (#37003)

See the full diff

Package name: gatsby-plugin-manifest

The new version differs by 250 commits.

• 0a455df chore(release): Publish
• 91dc167 fix(gatsby): don't log FAST_DEV message for each worker (#32961) (#32967)
• f936c93 fix(gatsby): set staticQueryResultHash to new hash on data change (#32949) (#32966)
• ea161ce feat(gatsby-graphiql-explorer): upgrade to webpack 5 (#30642)
• 944e381 chore(release): Publish next
• d6326df fix(gatsby-core-utils): Switch `auth` option from got to username/password (#32665)
• cf9c066 fix(gatsby): add this typings to actions (#32210)
• 53aa88e chore: enable test parallelism (#32766)
• b7deabc fix(deps): update starters and examples - gatsby (#32843)
• 6025c84 chore(deps): update dependency katex to ^0.13.13 for gatsby-remark-katex (#32567)
• d87c5cb chore: enable lmdb by default and update node for next major (#32695)
• 818d6c1 feat(gatsby-plugin-gatsby-cloud): Add `disablePreviewUI` option (#32907)
• f556a00 chore: update changelogs (#32924)
• aba5eba feat(gatsby): enable webpack caching in development for everyone (#32922)
• ac7bd4e feat(gatsby-source-wordpress): allow path to js file for beforeChangeNode option (#32901)
• 1a87a8a docs(gatsby-source-wordpress): document content sync (#32768)
• 417df15 chore: re-generate changelogs (#32886)
• 1810874 fix(gatsby-source-wordpress): draft previews (#32915)
• 7c72ab8 chore(gatsby): remove unused packages (#32903)
• afb06d7 chore(docs): Add hint for MDX plugin in remark-plugin-tutorial (#32876)
• 1303ecb chore(docs): Update wording for "using-web-fonts" (#32902)
• 9589911 chore(docs): Fix code highlighting in part 6 (#32900)
• 568d4ce feat(gatsby-source-drupal): Use the collection count from JSON:API extras to enable parallel API requests for cold builds (#32883)
• 41f5337 fix(deps): update typescript to ^4.29.3 (#32614)

See the full diff

Package name: gatsby-plugin-sharp

The new version differs by 250 commits.

• 92543af chore(release): Publish
• e79623c fix(create-gatsby): Missing "plugins" in cmses.json (#36566)
• a373d80 chore(docs): Remove `content` from sourcing guide (#36562)
• 8b59183 fix(gatsby): Remove default support for non ESM browsers (#36522)
• fab2db2 chore: setup v5 release channel (#36540)
• bac1e7a chore(gatsby): Update `react-refresh` to `^0.14.0` (#36553)
• 5f6ad91 chore(deps): update dependency autoprefixer to ^10.4.8 for gatsby-plugin-sass (#36273)
• cc3ef79 fix(deps): update dependency eslint-plugin-react-hooks to ^4.6.0 (#36040)
• 856b695 chore(deps): update [dev] minor and patch dependencies for gatsby-legacy-polyfills (#35547)
• 0b6e823 chore(deps): update dependency @ types/semver to ^7.3.12 (#36510)
• 0e56ad6 chore(deps): update dependency microbundle to ^0.15.1 for gatsby-link (#36512)
• 80f6616 chore(deps): update dependency microbundle to ^0.15.1 for gatsby-script (#36513)
• 34c8e51 fix(deps): update dependency eslint-plugin-jsx-a11y to ^6.6.1 (#36039)
• afba8ca chore(deps): update [dev] minor and patch dependencies for gatsby-source-shopify (#34363)
• b55e1d5 chore(docs): monorepos support (#36504)
• 8aeae21 fix(gatsby): pass custom graphql context provided by createResolverContext to materialization executor (#36552)
• 9c5eacf fix(gatsby): Handle renderToPipeableStream errors (#36555)
• 42e241c feat(gatsby): split up head & page component loading (#36545)
• dc9aa9a chore(gatsby): perfect `GatsbyConfig.proxy` type (#36548)
• 1125e58 fix: ci pipeline (#36544)
• 7fe8e51 fix(deps): update dependency react-docgen to ^5.4.3 for gatsby-transformer-react-docgen (#36277)
• bc04e8f chore(docs): migrate cloud docs to dotcom(1) (#36452)
• 59c1f4f fix(deps): update starters and examples - gatsby (#36503)
• 0d4dfe9 chore(docs): update url of `deleteNode` (#36502)

See the full diff

Package name: gatsby-remark-images

The new version differs by 250 commits.

• e98cb62 chore(release): Publish
• 164f9a1 fix(gatsby-source-contentful): De-dupe type names (#30834) (#30850)
• 0b99d00 fix(gatsby): webpack warnings are no longer in object format by default (#30801) (#30853)
• f561724 fix(gatsby): lower memory pressure in SSR (#30793) (#30851)
• 96805d5 fix(gatsby-source-wordpress): change `console.warning` to `console.warn` (#30764) (#30852)
• e40c83d chore(release): Publish next
• a5b5cf8 feat: upgrade to remark 13 (#29678)
• 172cf4d chore(docs): Add link to perf implications siteContext (#30778)
• 4336d04 fix(gatsby-plugin-gatsby-cloud): Add missing index.js (so the plugin can be resolved in workspaces) (#30761)
• 2bdd5a5 fix(gatsby-source-wordpress): only log out duplicate node if we have all the data we want to log (#30751)
• 1a9b830 fix(gatsby-plugin-image): Don't inherit all img styles (#30754)
• e0df4cc chore(docs): Change "whitelist" to "allow list" (#30756)
• 81ec270 chore: Add backport script (#30732)
• 63cc8fa fix(docs): Copy edits for debugging html doc + add React-specific example (#30745)
• eed1d43 fix(docs): Add link to how to enable DEV_SSR for fixing inconsistent css styles between dev/prod (#30746)
• ecd823f perf(gatsby): cache babel config items (#28738)
• a60e92f chore(release): Publish next
• dd9e95c docs(gatsby-plugin-image): Note on tracedSVG options name change (#30736)
• a5869e3 fix(gatsby-plugin-image): Use bare GATSBY___IMAGE global (#30713)
• 0f3fa4e fix(contentful): make gatsby-plugin-image a peer dependency (#30709)
• 6b2fd94 fix(gatsby-source-wordpress): pass missing property helpers to gql fetch util (#30727)
• c6fa488 chore(docs): Update wording of tutorial part 8 (#30606)
• a777367 fix(gatsby-cli): Update docs links in error-map (#30493)
• c473abf chore(docs): include autoprefixer in tailwind install command (#30718)

See the full diff

Package name: gatsby-source-filesystem

The new version differs by 250 commits.

• b8eac2d chore(release): Publish
• 3253a38 fix(gatsby-plugin-mdx): Hashing and pluginOptions (#36387) (#36395)
• 1880491 fix(gatsby-script): Reach router import (#36385) (#36394)
• f664ad2 feat(gatsby): Telemetry tracking for Head API (#36352)
• ab55e4e chore: Update `got` (#36366)
• 2b4ff76 fix(gatsby): Make runtime error overlay work in non-v8 browsers (#36365)
• f990e08 fix(test): clear and close lmdb after each test suite (#36343)
• 7fcf580 fix(gatsby): e.remove() is not a function when using Gatsby Head API (#36338)
• 25fb9d1 chore: Fix pipeline tests (#36363)
• a9132a5 chore(deps): update sharp (#35539)
• bc80c23 chore: Add note about rehype-slug-custom-id
• 5b6f1f6 chore(gatsby): upgrade multer (#36359)
• f2f0acf chore(gatsby-telemetry): upgrade git-up (#36358)
• 86a8efc chore(release): Publish next
• 0705ac7 chore(gatsby-plugin-mdx): Update .gitignore
• c92db36 BREAKING CHANGE(gatsby-plugin-mdx): MDX v2 (#35650)
• 3c0dd6d chore(release): Publish next
• 86b6ee9 Revert "chore(gatsby): Make `plugins` in `PluginOptions` type optional (#36351)"
• a2fa5a2 chore(gatsby): Make `plugins` in `PluginOptions` type optional (#36351)
• 6ecfe4a fix(gatsby-source-contentful): Correctly overwrite field type on Assets (#36337)
• 0ed362c chore(docs): Pre-encoded unicode characters can't be used in paths (#36325)
• 2bbe96d fix(deps): update dependency file-type to ^16.5.4 for gatsby-source-filesystem (#36276)
• 2be3fa7 chore(docs): Add first batch of Cloud docs (#36218)
• 4238142 chore(docs): Remove outdated examples and recipes (#36335)

See the full diff

Package name: gatsby-transformer-remark

The new version differs by 250 commits.

• 0c6cd61 chore(release): Publish
• 5e8e621 chore: Update main README (#36954)
• 7130cd4 test(gatsby): Slices API integration tests (#36747)
• 6496eed chore(release): Publish next
• bc7ac84 chore: preserve previous webpack stats derived values, even if we restart webpack itself (#36980)
• 2b5af32 fix: drop `__renderedByLocation` prop when calculating slice props hashes and don't expose it to slice component (#36979)
• cc1ee9b chore(release): Publish next
• 6a53861 chore(gatsby-link): Correct type export (#36968)
• 0ad6314 fix(gatsby-graphiql-explorer): Use upstream exporter package (#36966)
• 964265c chore(release): Publish next
• b624442 chore: Update peerDeps (#36965)
• b2ab092 chore(release): Publish next
• e2a14bf feat(gatsby): Slices <> partial hydration interop (#36960)
• 0083e62 fix(deps): update starters and examples gatsby packages to ^4.24.7 (#36957)
• 68e9cab chore(changelogs): update changelogs (#36958)
• b9eb8d2 chore(deps): update dependency autoprefixer to ^10.4.13 for gatsby-plugin-sass (#36934)
• 58c37ea chore(deps): update dependency @ jridgewell/trace-mapping to ^0.3.17 for gatsby-legacy-polyfills (#36933)
• a5e4c47 fix(deps): update dependency body-parser to ^1.20.1 for gatsby-source-drupal (#36940)
• c86aa7e chore(docs): Add clarification for Pro Tip on Part 4 of tutorial (#36918)
• d5c775a feat(gatsby): handle graphql-import-node bundling (#36951)
• 59e2976 feat(gatsby-remark-embed-snippet): added csproj to language map so it will be recognized as xml (#36919)
• c8a7dda chore(docs): Valhalla Content Hub Reference Guide (#36949)
• 3044280 fix(gatsby): stitch slices if just page html was regenerating without any of used slices regenerating (#36950)
• 10abdcb chore(release): Publish next

See the full diff

Package name: gatsby-transformer-sharp

The new version differs by 250 commits.

• 0a455df chore(release): Publish
• 91dc167 fix(gatsby): don't log FAST_DEV message for each worker (#32961) (#32967)
• f936c93 fix(gatsby): set staticQueryResultHash to new hash on data change (#32949) (#32966)
• ea161ce feat(gatsby-graphiql-explorer): upgrade to webpack 5 (#30642)
• 944e381 chore(release): Publish next
• d6326df fix(gatsby-core-utils): Switch `auth` option from got to username/password (#32665)
• cf9c066 fix(gatsby): add this typings to actions (#32210)
• 53aa88e chore: enable test parallelism (#32766)
• b7deabc fix(deps): update starters and examples - gatsby (#32843)
• 6025c84 chore(deps): update dependency katex to ^0.13.13 for gatsby-remark-katex (#32567)
• d87c5cb chore: enable lmdb by default and update node for next major (#32695)
• 818d6c1 feat(gatsby-plugin-gatsby-cloud): Add `disablePreviewUI` option (#32907)
• f556a00 chore: update changelogs (#32924)
• aba5eba feat(gatsby): enable webpack caching in development for everyone (#32922)
• ac7bd4e feat(gatsby-source-wordpress): allow path to js file for beforeChangeNode option (#32901)
• 1a87a8a docs(gatsby-source-wordpress): document content sync (#32768)
• 417df15 chore: re-generate changelogs (#32886)
• 1810874 fix(gatsby-source-wordpress): draft previews (#32915)
• 7c72ab8 chore(gatsby): remove unused packages (#32903)
• afb06d7 chore(docs): Add hint for MDX plugin in remark-plugin-tutorial (#32876)
• 1303ecb chore(docs): Update wording for "using-web-fonts" (#32902)
• 9589911 chore(docs): Fix code highlighting in part 6 (#32900)
• 568d4ce feat(gatsby-source-drupal): Use the collection count from JSON:API extras to enable parallel API requests for cold builds (#32883)
• 41f5337 fix(deps): update typescript to ^4.29.3 (#32614)

See the full diff

Package name: node-fetch

The new version differs by 7 commits.

• 1ef4b56 backport of #1449 (#1453)
• 8fe5c4e 2.x: Specify encoding as an optional peer dependency in package.json (#1310)
• f56b0c6 fix(URL): prefer built in URL version when available and fallback to whatwg (#1352)
• b5417ae fix: import whatwg-url in a way compatible with ESM Node (#1303)
• 18193c5 fix v2.6.3 that did not sending query params (#1301)
• ace7536 fix: properly encode url with unicode characters (#1291)
• 152214c Fix(package.json): Corrected main file path in package.json (#1274)

See the full diff

Package name: node-sass

The new version differs by 74 commits.

• 99242d7 7.0.1
• 77049d1 build(deps): bump sass-graph from 2.2.5 to 4.0.0 (#3224)
• c929f25 build(deps): bump node-gyp from 7.1.2 to 8.4.1 (#3209)
• 918dcb3 Lint fix
• 0a21792 Set rejectUnauthorized to true by default (#3149)
• e80d4af chore: Drop EOL Node 15 (#3122)
• d753397 feat: Add Node 17 support (#3195)
• dcf2e75 build(deps-dev): bump eslint from 7.32.0 to 8.0.0
• bfa1a3c build(deps): bump actions/setup-node from 2.4.0 to 2.4.1
• 80d6c00 chore: Windows x86 on GitHub Actions (#3041)
• 566dc27 build(deps-dev): bump fs-extra from 0.30.0 to 10.0.0 (#3102)
• 7bb5157 build(deps): bump npmlog from 4.1.2 to 5.0.0 (#3156)
• 2efb38f build(deps): bump chalk from 1.1.3 to 4.1.2 (#3161)
• fca5257 build(deps): bump actions/setup-node from 2.3.0 to 2.4.0
• 6200b21 docs: Double word "support" (#3159)
• eaf791a build(deps): bump actions/setup-node from 2.1.5 to 2.3.0
• 16b8d4b build(deps): bump coverallsapp/github-action from 1.1.2 to 1.1.3
• c167004 6.0.1
• 911d4db remove mkdirp dep (#3108)
• 30a52f7 build(deps): bump meow from 3.7.0 to 9.0.0
• 7e08463 build(deps-dev): bump mocha from 8.4.0 to 9.0.1
• cfcbb2c chore: Use default Apline version from docker-node (#3121)
• 886319b chore: Drop Node 10 support
• c908f4f fix: Bump OSX minimum to 10.11

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)
🦉 Denial of Service (DoS)
🦉 Regular Expression Denial of Service (ReDoS)
🦉 More lessons are available in Snyk Learn