[Snyk] Upgrade superagent from 5.2.2 to 9.0.2

[snyk-io]

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade superagent from 5.2.2 to 9.0.2.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

⚠️ Warning: This PR contains major version upgrade(s), and may be a breaking change.

• The recommended version is 30 versions ahead of your current version.

• The recommended version was released on 3 months ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Code Injection SNYK-JS-LODASH-1040724	63	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-567746	63	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-608086	63	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	63	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-6139239	63	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-NTHCHECK-1586032	63	Proof of Concept
	Prototype Poisoning SNYK-JS-QS-3153490	63	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-COOKIEJAR-3149984	63	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	63	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-559764	63	Proof of Concept
	Regular Expression Denial of Service (ReDoS) npm:debug:20170905	63	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-2429795	63	Proof of Concept

Release notes

Package name: superagent

• 9.0.2 - 2024-04-29
  
  • Merge pull request #1803 from alumni/fix-url-parse 329cc63
  • fix: replace deprecated url.parse() with new URL() 8ead63f
  • Merge pull request #1804 from alumni/remove-semver 9406dae
  • chore: remove unnecessary semver checks 86c9bf4
  • Merge pull request #1802 from alumni/fix-url-parse e996382
  • fix: replace deprecated node:url methods 7e20ced

  v9.0.1...v9.0.2

• 9.0.1 - 2024-04-23
  
  • Merge pull request #1796 from mmmmmrob/patch-2 68f7bb1
  • Merge branch 'master' into patch-2 450f7b2
  • Merge pull request #1794 from SukkaW/replace-polyfill-io ea633d7
  • Merge pull request #1791 from HannesOberreiter/patch-1 e334068
  • Update README.md a5c39b2
  • Add superagent-cheerio to the readme 0165c7c
  • docs: no longer recommend polyfill.io da9ff20
  • Update README.md c4205e0

  v9.0.0...v9.0.1

• 9.0.0 - 2024-04-23
  
  • fix: fixed ci job not installing npm deps 489708e
  • fix: fix numeric identifier issue ea2577e
  • fix: drop support for node < v14.18.0 due to formidable node:fs scope import statement (per #1800) 23fe5ab
  • Merge pull request #1800 from tomstrong64/master 03de30c
  • fix: formidable v3 multipart form contents mapped to expected format b9c7837
  • Update formidable 3ee138d
  • test: replace should with node:assert (#1782) 1c8338b
  • test: replace should with node:assert (#1780) 0dc80d1
  • Merge pull request #1777 from jimmywarting/classify 83e92cb
  • classify agent fca95a3

  v8.1.2...v9.0.0

• 8.1.2 - 2023-08-15
  
  • Merge pull request #1776 from bjornua/bjornba/bigint-guard-fix b83887a
  • fix: handle BigInts that has a .toJSON property 36088a6

  v8.1.1...v8.1.2

• 8.1.1 - 2023-08-15
  
  • Revert "chore: bump deps, xo linting" 6feca3f

  v8.1.0...v8.1.1

• 8.1.0 - 2023-08-15
  
  • chore: bump deps, xo linting 8b5400b
  • Merge pull request #1764 from tobiasdiez/es6_http2wrapper 2fd4292
  • Merge pull request #1766 from slickmb/fix/emit_end_when_unzipping a29a062
  • Merge pull request #1773 from NikoRaisanen/bugfix-handle-bigint a62866a
  • Merge pull request #1774 from afharo/remove-v14-destroy-before-abort-hack 4691583
  • fix: do not force-set req.destroyed = true on abort 70c464c
  • fix: fixed BigInt sent as json 259a43f
  • fix: only emit 'end' after unzip is done writing ef969fa
  • feat: migrate to es6 class instead of util.inherit in http2wrapper 7801408
  • fix: fixed eslint-plugin-compat issue 73c7efb
  • chore: fixed rimraf dep causing tests to fail 988636f

  v8.0.9...v8.1.0

• 8.0.9 - 2023-01-25
  
  • fix: fixed eslintrc config 53d2d8a
  • chore: bump deps 82f7498
  • Merge pull request #1761 from Leafly-com/fix/follow-redirect-cookies cd094f5
  • Merge pull request #1762 from Leafly-com/fix-cookie-header 4268ae4
  • fix(cookies): parse header correctly when merging cookies 4aac580
  • fix(redirects): emit correct response in redirect event e2538f3

  v8.0.8...v8.0.9

• 8.0.8 - 2023-01-18
  
  • Merge pull request #1757 from ShiraNagen/cookies-domains 93835cb
  • fix(cookies): send cookies to allowed domains e98489a

  v8.0.7...v8.0.8

• 8.0.7 - 2023-01-18
  
  • chore: bump deps dd85a8e
  • Merge pull request #1756 from sashashura/patch-1 3adc458
  • build: harden ci.yml permissions 5fe4d09

  v8.0.6...v8.0.7

• 8.0.6 - 2022-12-07
  
  • chore: bump deps 7d5e3a8

  v8.0.5...v8.0.6

• 8.0.5 - 2022-12-02
• 8.0.4 - 2022-11-25
• 8.0.3 - 2022-10-24
• 8.0.2 - 2022-10-03
• 8.0.1 - 2022-09-29
• 8.0.0 - 2022-06-24
• 7.1.6 - 2022-06-01
• 7.1.5 - 2022-06-01
• 7.1.4 - 2022-05-31
• 7.1.3 - 2022-04-26
• 7.1.2 - 2022-03-29
• 7.1.1 - 2022-01-19
• 7.1.0 - 2022-01-18
• 7.0.2 - 2022-01-11
• 7.0.1 - 2022-01-07
• 7.0.0 - 2022-01-07
• 6.1.0 - 2020-08-30
• 6.0.0 - 2020-08-08
• 5.3.1 - 2020-06-28
• 5.3.0 - 2020-06-28
• 5.2.2 - 2020-02-17

from superagent GitHub release notes

---

Important

• Warning: This PR contains a major version upgrade, and may be a breaking change.
• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[google-cla]

Thanks for your pull request! It looks like this may be your first contribution to a Google open source project. Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA).

View this failed invocation of the CLA check for more information.

For the most up to date status, view the checks section at the bottom of the pull request.