[Snyk] Fix for 1 vulnerabilities

[twilio-product-security]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	768/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: all-contributors-cli

The new version differs by 60 commits.

• b3d0995 feat(alpha-sort): Add a parameter contributorsSortAlphabetically (#249)
• 8dd551a chore(package): update nock to version 12.0.0 (#248)
• 80b1fbd Update pify to the latest version 🚀 (#247)
• 07099de chore(deps): update inquirer to the latest version 🚀 (#245)
• 3c124bf Update kcd-scripts to the latest version 🚀 (#244)
• 0965095 feat: support Github Enterprise (⬆️ Bump minimist from 1.2.5 to 1.2.6 #97)
• 4f40750 Update kcd-scripts to the latest version 🚀 (#241)
• b5d1963 docs: add smoia as a contributor (#240)
• 0993a90 feat(contribution-types): added "Data" contribution (#231)
• cc2585b Update inquirer to the latest version 🚀 (#201)
• dbb05a4 fix: fix badge replacement (#232)
• 3382821 fix: a11y issue by removing unnecessary alternate text (#217) (#218)
• 7d83c7c chore: make use of inhouse command recommendation (#228)
• ed9d84d Update yargs to the latest version 🚀 (#227)
• 60cba87 docs: add phacks as a contributor (#226)
• f38e0c8 feat: add a11y contribution type (#223)
• 8cb283b Update chalk to the latest version 🚀 (#224)
• 4841734 chore(config): bump node (#221)
• deee5d0 feat: add review links (#213)
• 72de75a fix: using a custom badge template breaks badge replacement (#210)
• 97878f4 fix: add contributions (#211)
• a91145f fix: username might be a number (#203)
• 1dccd9f chore(package): update nock to version 11.1.0 (#207)
• 65c3a60 docs: add SnO2WMaN as a contributor (#208)

See the full diff

Package name: eslint

The new version differs by 249 commits.

• 80b8d5d 5.5.0
• b68e403 Build: changelog update for 5.5.0
• 6e110e6 Fix: camelcase duplicate warning bug (fixes #10801) (#10802)
• 5103ee7 Docs: Add Brackets integration (#10813)
• b61d2cd Update: max-params to only highlight function header (#10815)
• 2b2f11d Upgrade: babel-code-frame to version 7 (#10808)
• 2824d43 Docs: fix comment placement in a code example (#10799)
• 10690b7 Upgrade: devdeps and deps to latest (#10622)
• 80c8598 Docs: gitignore syntax updates (fixes #8139) (#10776)
• cb946af Chore: use meta.messages in some rules (1/4) (#10764)
• a857cd9 5.4.0
• 8dee250 Build: changelog update for 5.4.0
• a70909f Docs: Add jscs-dev.github.io links (#10771)
• 034690f Fix: no-invalid-meta crashes for non Object values (fixes #10750) (#10753)
• 11a462d Docs: Broken jscs.info URLs (fixes #10732) (#10770)
• 985567d Chore: rm unused dep string.prototype.matchall (#10756)
• f3d8454 Update: Improve no-extra-parens error message (#10748)
• 562a03f Fix: consistent-docs-url crashes if meta.docs is empty (fixes #10722) (#10749)
• 6492233 Chore: enable no-prototype-builtins in codebase (fixes #10660) (#10664)
• 137140f Chore: use eslintrc overrides (#10677)
• 2af6f4f 5.3.0
• 11e70c7 Build: changelog update for 5.3.0
• dd6cb19 Docs: Updated no-return-await Rule Documentation (fixes #9695) (#10699)
• 6009239 Chore: rename utils for consistency (#10727)

See the full diff

Package name: node-env-run

The new version differs by 18 commits.

• 8088dd3 🔖 Release v4.0.0
• fba3db0 💚 change eol for windows
• d9dabe7 ✏️ add build badge to readme
• dff71d1 💚 switch to GitHub actions
• d8bd422 🚨 update linter
• 51bcdc2 ⬆️ upgrade deps
• a435945 🐛 improve argument handling
• bbbd54f 🔥 remove yarn.lock
• 449a373 ⬆️ Bump handlebars from 4.0.8 to 4.7.6 (Fix number acquisition #13)
• 2735123 🔥 remove package-lock.json from repo (Support IVR ordering via Digits and Speech #12)
• 559ba13 ⬆️ Bump debug from 2.6.8 to 2.6.9 (Fix setup of webhoooks #10)
• 0bb67bc fix: exit on child exit, rather than close (Run UI independent of API #4)
• 9700bfe [Snyk] Security upgrade yargs from 11.0.0 to 13.1.0 (A way to track "offline" coffees #8)
• 6419cdd 🔒 Fix package.json to reduce vulnerabilities (Create a kiosk page #3)
• 8eac603 🔒 Fix for 1 vulnerable dependencies (Use repoUrl #5)
• 8453664 🔧 Move to new @ dkundel/eslint-config-{js/ts}
• af25b3a 🔧 Use dkundel/eslint-config
• 8814a16 ➕ Add @ dkundel/eslint-config

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic