[Snyk] Upgrade lerna from 5.1.4 to 5.6.1

[snyk-bot]

Snyk has created this PR to upgrade lerna from 5.1.4 to 5.6.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 16 versions ahead of your current version.
• The recommended version was released 23 days ago, on 2022-09-30.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Improper Input Validation SNYK-JS-PARSEURL-3024398	571/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5	Proof of Concept
	Server-side Request Forgery (SSRF) SNYK-JS-PARSEURL-3023021	571/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5	Proof of Concept
	Cross-site Scripting (XSS) SNYK-JS-PARSEURL-2942134	571/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5	Proof of Concept
	Server-side Request Forgery (SSRF) SNYK-JS-PARSEURL-2936249	571/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5	Proof of Concept
	Authorization Bypass Through User-Controlled Key SNYK-JS-PARSEPATH-2936439	571/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5	Proof of Concept
	Information Exposure SNYK-JS-PARSEURL-2935947	571/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5	Proof of Concept
	Cross-site Scripting (XSS) SNYK-JS-PARSEURL-2935944	571/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: lerna

• 5.6.1 - 2022-09-30
  

  5.6.1 (2022-09-30)

  Bug Fixes

  • add-caching: ensure lerna.json is configured automatically (9677cda)
• 5.6.0 - 2022-09-29
  

  5.6.0 (2022-09-29)

  Bug Fixes

  • run: only defer to Nx when targetDefaults are defined in nx.json (#3349) (51f80d9)

  Features

  • core: add add-caching command (#3350) (ef09a06)
  • repair: add lerna repair command (#3314) (7defab3)
  • version: apply prettier to updated files, if applicable (#3348) (d63fc1f)
• 5.5.4 - 2022-09-28
  

  5.5.4 (2022-09-28)

  Note: Version bump only for package lerna-monorepo

• 5.5.2 - 2022-09-20
  

  5.5.2 (2022-09-20)

  Bug Fixes

  • run: missing fs-extra dependency declaration (#3332) (068830e)
  • run: warn on incompatible arguments with useNx (#3326) (ebf6542)
• 5.5.1 - 2022-09-09
  

  5.5.1 (2022-09-09)

  Bug Fixes

  • core: prevent validation error in version/publish with workspace: prefix (#3322) (746ce33)
  • run: exclude dependencies with --scope when nx.json is not present (#3316) (99a13a9)
• 5.5.0 - 2022-08-31
  

  5.5.0 (2022-08-31)

  Bug Fixes

  • version: only update existing lockfile deps (#3308) (f5c8480)

  Features

  • pnpm workspaces support (#3284) (1b18dbe)
• 5.4.3 - 2022-08-16
  

  5.4.3 (2022-08-16)

  Bug Fixes

  • version: ignore npm lifecycle scripts on package lock update (#3295) (1ba2b8a)
• 5.4.2 - 2022-08-14
  

  5.4.2 (2022-08-14)

  Bug Fixes

  • version: update package-lock at the root if it exists (#3290) (7f62bab)
• 5.4.1 - 2022-08-12
  

  5.4.1 (2022-08-12)

  Bug Fixes

  • package-graph: ensure to touch all nodes (#3234) (f3c211d)
  • properly update dependencies lockfile v2 (#3275) (d7c398b)
• 5.4.0 - 2022-08-08
• 5.3.0 - 2022-07-27
• 5.2.0 - 2022-07-22
• 5.1.8 - 2022-07-07
• 5.1.7 - 2022-07-06
• 5.1.6 - 2022-06-24
• 5.1.5 - 2022-06-24
• 5.1.4 - 2022-06-15

from lerna GitHub release notes

Commit messages

Package name: lerna

• c455b1c chore(release): v5.6.1
• 9677cda fix(add-caching): ensure lerna.json is configured automatically
• 07271fe chore(release): v5.6.0
• ef09a06 feat(core): add add-caching command (#3350)
• d63fc1f feat(version): apply prettier to updated files, if applicable (#3348)
• 51f80d9 fix(run): only defer to Nx when targetDefaults are defined in nx.json (#3349)
• 7defab3 feat(repair): add lerna repair command (#3314)
• add4356 chore: update nx to 14.8.1 (#3347)
• cb147d1 chore: fix formatting after release
• f65ef55 chore(release): v5.5.4
• 32251c0 chore(release): v5.5.3
• fef2ae6 fix(run): fully defer to Nx for dep detection when nx.json exists (#3345)
• b3df233 chore: improve clarity of docs
• 1c39987 chore: fix formatting after release
• 6a0c3fb chore(release): v5.5.2
• ebf6542 fix(run): warn on incompatible arguments with useNx (#3326)
• 068830e fix(run): missing `fs-extra` dependency declaration (#3332)
• 7971a60 chore(deps): bump parse-url and git-url-parse (#3330)
• 96b6f04 chore: fix formatting after release
• 9f119b0 chore(release): v5.5.1
• 99a13a9 fix(run): exclude dependencies with --scope when nx.json is not present (#3316)
• 1343b9f chore: update cache-tasks.md (#3291)
• 4cb2ac9 chore: update getting-started.md (#3293)
• f6717ea chore(run): Update deprecated nx arg _ to __overrides__ (#3315)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs