[Snyk] Fix for 2 vulnerabilities

[al5harma]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	125/1000 Why? Confidentiality impact: None, Integrity impact: None, Availability impact: High, Scope: Unchanged, Exploit Maturity: No data, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.01055, Social Trends: No, Days since published: 1, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: High, Package Popularity Score: 99, Impact: 5.99, Likelihood: 2.08, Score Version: V5	Uncontrolled resource consumption SNYK-JS-BRACES-6838727	No	No Known Exploit
	125/1000 Why? Confidentiality impact: None, Integrity impact: None, Availability impact: High, Scope: Unchanged, Exploit Maturity: No data, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.01055, Social Trends: No, Days since published: 1, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: High, Package Popularity Score: 99, Impact: 5.99, Likelihood: 2.08, Score Version: V5	Inefficient Regular Expression Complexity SNYK-JS-MICROMATCH-6838728	No	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: dustjs-linkedin

The new version differs by 7 commits.

• 5cd5529 Release v3.0.1
• 0d72e0b Merge pull request Circleci project setup snyk-labs/nodejs-goof#808 from sumeetkakkar/topic/update-deps
• b2aaa47 Merge branch 'master' into topic/update-deps
• bd397ea Update tests.yaml: add --legacy-peer-deps to support npm 8 restrictions
• 115f78c dependency update: chokidar
• d951a90 Update tests.yml
• ea9ae70 Create tests.yml

See the full diff

Package name: tap

The new version differs by 133 commits.

• dcd5846 update versions
• 0774241 prevent global/local plugin installation footgun
• 078c313 Comb through every combo of plan, promise, end()
• 15c924e ensure declared deps are loaded, and vice versa
• d849441 docs: more tweaks to ansi-to-pre output
• b7f882f brighten blue in node --test example
• 356f223 doc: fix link to node-test-example repo
• a5b2fda add output examples to node interop doc
• 1870e74 reporter: fix extra space on source indicator line
• 7c3e659 docs: slight improvements/formatting /tap-format page
• 844e808 doc: document about node --test interop
• 26455fd chore: fix script that syncs to npm manually on failed pub
• 5c114fc update versions
• 5811079 fix timing issue breaking node --test serialization
• 69c31a8 update versions
• 2dfff65 @ tapjs/[email protected]
• c433477 tcompare: include known non-enumerable Error properties
• d089e7e tcompare: print symbols properly in js formatting
• 390b9f9 put the logo in the header
• 414d146 update versions
• 63cc9c4 snapshots updated by Symbol formatting change
• 995e464 changelog 18.4
• 86bc4d0 tcompare: include symbols in formatting/comparison
• 8344411 Add reporter-file config option

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Uncontrolled resource consumption