[Snyk] Fix for 1 vulnerabilities

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	551/1000 Why? Recently disclosed, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-WS-1296835	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: @slack/client

The new version differs by 250 commits.

• 891307e Publish
• 55624fd lerna generated SHAs
• a76b3ee Merge pull request CoinFalcon support DeviaVir/zenbot#756 from slackapi/dev-v5
• 09d6d6f fix a typescript issue from changing from type aliases to interfaces
• 4d3133c remove package locks from examples
• c3e5c8b update examples for testing
• d40c883 remove file accidentally added in merge
• 0d1cd79 Merge branch 'master' into dev-v5
• b6dc555 Merge pull request How do i see the trades made by bot in paper mode? DeviaVir/zenbot#755 from aoberoi/find-and-replace
• 65788d2 Merge pull request Should pass sandbox config for Gemini regardless of public or private request DeviaVir/zenbot#754 from shanedewael/local-development-tutorial
• 81be95b its amazing what you can find with a little find and replace
• 8c98232 Consolidate cta
• 53861c9 Update docs/_tutorials/local_development.md
• 74b8e77 Update docs/_tutorials/local_development.md
• 200a430 Update docs/_tutorials/local_development.md
• 95cd749 Changes
• 2ee0224 Merge pull request Symmetrical Simulation Freezes at Point of Reversal DeviaVir/zenbot#752 from aoberoi/scheduled-messages-v5
• 695984a Merge pull request Fix sim symmetrical freezing DeviaVir/zenbot#753 from aoberoi/issue-templates-v5
• aa126f0 Merge pull request Fix for symmetrical option causing sim error DeviaVir/zenbot#751 from aoberoi/reference-examples
• 5f7a654 Add table of contents
• e73ad7d Fix links on READMEs
• d1eb873 Local development tutorial
• 17318b2 add warning to maintainers guide
• dd84a72 update issue template to ask for relevant packages

See the full diff

Package name: bitfinex-api-node

The new version differs by 250 commits.

• 9477e59 package: bump bfx-api-node-models to ^1.2.0
• 1f08822 test/args: fix unset API_KEY in test
• a5728a1 (feature) finalize documentation
• 1525527 (manifest) bump bfx-api-node-rest for travis
• 1fcfe60 (meta) add vim session file to gitignore
• 46d3672 (fix) WSv2 trades example name/unnecessary auth
• 4ec7ad1 (refactor) expand OB amount col width in viz example
• 8f98163 (fix) null filterByMarket means 'all' in RESTv2 tickers example
• 74853ff (refactor) improve eslint config, add mocha plugin, fix errors
• 0bfa947 (fix) support stop price and trailing distance in submit-order example
• 344dff7 (feature) set/enforce coverage limits, meet them
• 5528409 (refactor) enable nyc html repoter
• da85caf (manifest) bump deps
• 2bc8acc (standard --fix)
• 8e4f141 (fix) RESTv2 test, use valid url
• f3a85a3 (fix) re-enable test for travis, found the problem [linked dep]
• 804fd3b (refactor) disable runExample() tests for travis, sadface
• 9a7be78 (refactor) more travis timeouts...
• a3f5591 (refactor) increase runExample() suite timeout to 10s for travis
• 4373c67 (refactor) tweak for travis
• 8b83052 (refactor) same as last commit
• 9ebc461 (refactor) increase test suite timeout for husky...
• 9c77ad9 (refactor) tweak test for travis, not sure why timeout is exceeded
• f44fa3a (fix) increase test timeout for travis

See the full diff

Package name: ws

The new version differs by 250 commits.

• f5297f7 [dist] 7.4.6
• 00c425e [security] Fix ReDoS vulnerability
• 990306d [lint] Fix prettier error
• 32e3a84 [security] Remove reference to Node Security Project
• 8c914d1 [minor] Fix nits
• fc7e27d [ci] Test on node 16
• 587c201 [ci] Do not test on node 15
• f672710 [dist] 7.4.5
• 67e25ff [fix] Fix case where `abortHandshake()` does not close the connection
• 23ba6b2 [fix] Make UTF-8 validation work even if utf-8-validate is not installed
• 114de9e [ci] Use a unique ID instead of commit SHA
• d75a62e [ci] Include commit SHA in `flag-name`
• a74dd2e [dist] 7.4.4
• 9277437 [fix] Recreate the inflate stream if it ends
• cbff929 [doc] Improve `websocket.terminate()` documentation
• 489a295 [ci] Use GitHub Actions (Update superagent to the latest version 🚀 DeviaVir/zenbot#1853)
• 77370e0 [pkg] Update eslint-config-prettier to version 8.1.0
• 99338f7 [doc] Fix `data` argument type (Fix min_periods should be set after the strategy set its defaults #1771 DeviaVir/zenbot#1843)
• 223194e [dist] 7.4.3
• 4e9607b [perf] Reset compressor/decompressor instead of re-initialize (Update eslint to the latest version 🚀 DeviaVir/zenbot#1840)
• 2789887 [minor] Use `request.socket` instead of `request.connection`
• 2079ca5 [test] Increase code coverage
• d1a8af4 [dist] 7.4.2
• 48a2349 [pkg] Update eslint-config-prettier to version 7.1.0

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic