[Snyk] Security upgrade sqlite3 from 5.0.2 to 5.0.3

[PDSSnyk]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	718/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 6.5	Uncontrolled Resource Consumption ('Resource Exhaustion') SNYK-JS-TAR-6476909	No	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: sqlite3

• 5.0.3 - 2022-04-13
  

  What's Changed

  • Updated bundled SQLite to v3.38.2 - @ daniellockyer
  • Enabled math functions in compiler options - @ kewde
  • Updated node-gyp to v8.x - @ daniellockyer
  • Re-enabled Node-API v6 builds - @ daniellockyer
  • Fixed segfault of invalid toString() object by @ kewde in #1450
  • Fixed building on MacOS Monterey 12.3 - @ daniellockyer
  • Replaced Python extraction script with JS by @ xPaw in #1570
  • Switched prebuilt binary hosting to GitHub Releases - @ daniellockyer

  Known Problems

  • #1578 - the minimum glibc version for prebuilt binaries was bumped to 2.29. We hope to bring this back down within the next few releases but you will need to compile from source if your system ships with a lower version.
  • Prebuilt binaries for Linux do not work on musl systems. This should be fixed with 8b2cdd9 but you will need to compile from source to use v5.0.3.

  Full Changelog: v5.0.2...v5.0.3

• 5.0.2 - 2021-02-15
  
  • disable N-API v6

from sqlite3 GitHub release notes

Commit messages

Package name: sqlite3

The new version differs by 44 commits.

• 573784b v5.0.3
• e5a24fd Deleted `examples/` folder
• b05f459 Added note about GitHub Releases to CHANGELOG.md
• 33d0656 Modernised Usage example in README
• 9d05c55 Fixed up more README nits
• 08d6319 Fixed link to API docs
• 0e2235a Altered wording in README
• 76b6c56 Altered README header
• e3df365 Updated README
• 426930f Enabled CI to run when pushing tags
• a21d41f Fixed uploading binaries to commit artifacts
• bc978c7 Fixed CI step wording
• 7f744a1 Added prebuilt binaries via GitHub Releases
• b4b3c3a Deleted `scripts/` directory
• 71bbdea Pinned dev dependencies (updated socket.io and socket.io-client  juice-shop/juice-shop#1558)
• a597383 Updated badges in README
• 0eb4a0f Deleted Travis and Appveyor configs
• b58d341 Downgraded `mocha` and `eslint`
• f39b10d Added missing Node versions to CI
• 8db96d4 Replaced Python extraction script with JS (Add "NoSql Manipulation" video by Hacksplained juice-shop/juice-shop#1570)
• 11c988c Fixed Windows build architecture in CI
• 8e63848 Updated Windows CI runner to `windows-latest`
• d9e7d8b Fixed building on MacOS Monterey 12.3
• 859b95b Updated `node-gyp` to v8.x

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Uncontrolled Resource Consumption ('Resource Exhaustion')