[Snyk] Fix for 1 vulnerabilities

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • test/fixtures/demo-os/package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	768/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: chalk

The new version differs by 55 commits.

• a838948 1.1.2
• ff2c3ea Merge pull request [Snyk] Security upgrade marked from 0.3.6 to 1.1.1 #104 from popey456963/patch-1
• 426fc48 7,700 Dependent Modules
• 9001b39 Updates maintainer email.
• 308f6b6 minor tweaks
• 18c64ad cleanup [Snyk] Security upgrade sanitize from 4.6.2 to 5.2.1 #92
• 05f87e2 Close [Snyk] Security upgrade sanitize from 4.6.2 to 5.2.1 #92 PR: Closing before and reopening the style after a line break.
• 139f8b6 add Code of Conduct
• 51b8f32 6700 dependents! 🔥
• 8417f17 Close [Snyk] Fix for 1 vulnerabilities #95 PR: tweak defining proto.
• a301cbf Merge pull request [Snyk] Security upgrade less from 2.7.3 to 3.0.2 #97 from stevemao/missing-tests
• 8ec46cf Merge pull request [Snyk] Security upgrade snyk from 1.101.1 to 1.124.1 #96 from stevemao/bump-deps
• 337f9c7 add missing tests
• 5679ec0 bump deps
• b8e7da6 Merge pull request [Snyk] Security upgrade sanitize from 4.6.2 to 5.2.1 #93 from venning/master
• 7c40059 Use HTTPS for shields.io unicorn badge; raises mixed-content warning on npmjs.com
• c2ef5b8 Merge pull request [Snyk] Fix for 1 vulnerabilities #91 from vdemedes/remove-extra-deps
• 04cae22 remove has-ansi and strip-ansi dependencies
• 83615f2 clarify docs about using console.log
• ed6e7d5 Close [Snyk] Fix for 1 vulnerabilities #86 PR: Add ES2015 template literal example. Fixes [Snyk] Fix for 1 vulnerabilities #77
• 8d59997 readme tweaks
• 262274a add `slice-ansi` to related section in readme
• 60b0a74 Merge pull request [Snyk] Fix for 1 vulnerabilities #85 from jorrit/patch-1
• 641ae57 New URL for cmder

See the full diff

Package name: grunt-contrib-compress

The new version differs by 31 commits.

• 936dd94 Merge pull request [Snyk] Security upgrade npm from 2.15.12 to 7.0.0 #166 from gruntjs/014
• 4056bb8 v0.14.0
• 6c340ab make ok output consistent with other grunt plugins
• 2e2ef91 Merge pull request [Snyk] Security upgrade snyk from 1.101.1 to 1.465.0 #165 from ascripcaru/verbose
• e38ef0b more comments
• 0f2797b made grunt to log each file only on verbose
• 1617c2f Merge pull request [Snyk] Security upgrade madge from 3.12.0 to 4.0.1 #162 from gruntjs/deps
• 46e9027 Update dependencies.
• 49f4651 Update compress-options.md
• fcb5047 Merge pull request [Snyk] Security upgrade actionpack from 4.2.5 to 6.0.3.5 #159 from hkdobrev/patch-1
• b83ffa6 Fix store option default in README
• ff1d89d Update appveyor.yml.
• 51382c0 Merge pull request [Snyk] Security upgrade knex from 0.7.3 to 0.95.0 #160 from tandrewnichols/verbose
• dd92183 Change grunt.log to grunt.verbose for created files
• eceb50b CI: test node.js 4.0.
• c7c353e Merge pull request [Snyk] Security upgrade handlebars from 2.0.0 to 4.7.7 #150 from pdehaan/patch-1
• d95518b Update license attribute
• 3f67a96 Update appveyor.yml.
• 0beb9cd Lint fixes.
• 3862bed Update appveyor.yml.
• 6f68849 Update appveyor.yml.
• 4107a18 Update JSHint's options.
• 3459ce3 bump `chalk`
• ef3d6a2 better pretty output

See the full diff

Package name: grunt-contrib-copy

The new version differs by 7 commits.

• 84e1993 0.8.1
• 689c734 changelog
• b8a8307 Merge pull request [Snyk] Fix for 1 vulnerabilities #233 from pgilad/patch-1
• 13d2f09 Update license attribute
• 8ba6d9a Merge pull request [Snyk] Security upgrade actionpack from 4.2.5 to 4.2.5 #224 from suguiura/patch-1
• 376400c Bump README.md
• 52f07be bump `chalk`

See the full diff

Package name: grunt-jscs

The new version differs by 13 commits.

• 4a34df6 Release v2.0.0
• 9e6d86e Update dependecies
• 17f9e9c Bump jscs version to 2.0.0
• 8715716 Fix code style issues
• ad532e2 Update package.json
• 49936c6 Add enmasse testing merge with path config and inline options
• 330f2bc Merge branch 'remove-grunt-bump'
• 34dba9c Change package.json indent size to 2
• 8c7064b Document how to publish a new version
• de383ba Create npm scripts to bump version
• 1e60f29 Remove grunt-bump and the bump task
• 37a7757 Correct docs example
• b2d9ff9 Improve doc examples

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic