[Snyk] Fix for 1 vulnerabilities

[aliscco]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • tools/node_modules/eslint/node_modules/ansi-styles/package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	658/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: ava

The new version differs by 250 commits.

• 9bc615e 4.0.0
• f09742f Clean up documentation in preparation for AVA 4
• 0187779 Dependency updates
• 29024af Test compatibility with TypeScript 4.5
• 8df118b Use AVA 4 for the self-hosted tests
• bedd1d0 Remove dependency on `equal-length`
• d4ec097 Improve wording in TypeScript recipe
• b3a1b72 Mention experimental specifier resolution in TypeScript recipe
• 77623a5 Handle path sources
• 5cdeb9d 4.0.0-rc.1
• 88e7680 Final ESM tweaks
• 60b7cf8 Align shared worker protocol identifier with provider protocols
• ad521af Graduate shared workers to be non-experimental
• 0edfd00 Skip flaky tests in CI
• c4f6723 Use thread IDs
• af30e73 Remove dead code and obsolete TODOs
• 6ed3ad1 Reduce XO exceptions
• 5a48893 Update XO and fix problems
• a7737cd Update dependencies
• dc405ef Fix Mongoose recipe
• c214512 Find ava.config.* files outside of project directory
• 44aebd9 Exclude more files from code coverage
• def2885 Improve handling of temporary file changes in watch mode
• 1a62f15 Switch to .xo-config.cjs

See the full diff

Package name: tsd

The new version differs by 47 commits.

• 09f4b4f 0.17.0
• 3c3c755 Remove `update-notifier`
• f94f918 Require Node.js 12
• 6ba71f2 Semi-pin TypeScript version
• 6480ca9 Implement `printType` helper to print the type of the passed expression as a warning ([Snyk] Fix for 44 vulnerabilities #115)
• b749113 Fix processing of config files containing the `rootDir` option ([Snyk] Security upgrade mocha from 8.4.0 to 10.1.0 #117)
• 6d0ce6c Process gitignore-style patterns in `files` property of `package.json` ([Snyk] Fix for 4 vulnerabilities #116)
• 009a185 Add tests for identicality checks of `any`/`never` type parameters to `expectType`/`expectNotType` ([Snyk] Fix for 3 vulnerabilities #113)
• 7fbb7a0 Use ava's diff comparison view to report assertion mismatches during tests ([Snyk] Security upgrade mocha from 6.2.3 to 10.1.0 #114)
• f1a2057 Allow omitting `types` property for non-barrel main ([Snyk] Fix for 13 vulnerabilities #112)
• 3b61da7 Ignore errors from libs in `node_modules` folders ([Snyk] Fix for 6 vulnerabilities #110)
• fc871a1 Fix config file parsing to consider the `extends` option ([Snyk] Fix for 19 vulnerabilities #109)
• f2cfca7 Upgrade to ts@4.3, allow `expectError` to detect `override` related errors ([Snyk] Security upgrade tap from 1.4.1 to 12.6.2 #108)
• 0245f59 0.16.0
• 331101b Upgrade dependencies
• 8fe3924 Allow `expectError` directives to detect parameter count mismatches ([Snyk] Security upgrade lerna from 3.22.1 to 5.5.2 #102)
• 27ccc49 Allow `expectError` assertions to detect non-callable/non-constructable values/expressions ([Snyk] Security upgrade mocha from 6.2.3 to 10.1.0 #104)
• 87f7109 Handle multiple diagnostic errors in a single `expectError` assertion ([Snyk] Security upgrade tap from 14.11.0 to 15.0.0 #103)
• abf7082 Allow `expectError` assertions to detect `this` type mismatches on class methods ([Snyk] Fix for 3 vulnerabilities #105)
• 27c93af Detect "Type X has no properties in common with type Y" in `expectError` (TS2559) ([Snyk] Security upgrade eslint from 4.19.1 to 5.0.0 #97)
• b39bd98 Fix missing ES types regression in 0.15 ([Snyk] Fix for 4 vulnerabilities #100)
• 05f9f3b Upgrade to TypeScript@4.2.4
• 5376484 Switch to @ tsd/typescript
• 2cc8e9c 0.15.1

See the full diff

Package name: xo

The new version differs by 214 commits.

• 100dc9b 0.53.0
• 91d10d1 Require Node.js 14
• e678209 Update link to `n` ESLint plugin ([Snyk] Security upgrade tap from 14.11.0 to 16.0.0 #696)
• db6e207 0.52.4
• e69a192 Fix a bug with relative `extends` ([Snyk] Fix for 13 vulnerabilities #686)
• f9c7db9 Update XO badge ([Snyk] Fix for 1 vulnerabilities #692)
• 92b3a3d Replace link to `node` ESLint plugin with `n` in readme ([Snyk] Security upgrade @npmcli/arborist from 2.10.0 to 3.0.0 #690)
• 35645f6 0.52.3
• a608bf1 Fix compatibility problem with Windows ([Snyk] Fix for 1 vulnerabilities #687)
• bbf323b 0.52.2
• 4cf8b05 Fix tsconfig resolution quirks ([Snyk] Fix for 2 vulnerabilities #683)
• c8ec522 0.52.1
• de5f878 Ensure tsconfig lookups work as expected ([Snyk] Fix for 3 vulnerabilities #680)
• a152e1b 0.52.0
• b6fea12 Update dependencies
• b661eb8 Implement full tsconfig resolution ([Snyk] Security upgrade tap from 14.11.0 to 16.0.0 #677)
• 7fe3b48 0.51.0
• cd86133 Include `rulesMeta` in linting results ([Snyk] Security upgrade tap from 14.11.0 to 16.0.0 #674)
• 9ac43fd 0.50.0
• 00d51de Update dependencies
• 3a4c9c9 Switch to eslint-plugin-node's maintained fork ([Snyk] Fix for 1 vulnerabilities #660)
• ce76e49 Fix link
• eb65ea4 0.49.0
• 5f0e53d Update dependencies

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)