[Snyk] Fix for 1 vulnerabilities

[saeedahassan]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • deps/npm/package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	584/1000 Why? Has a fix available, CVSS 7.4	Regular Expression Denial of Service (ReDoS) SNYK-JS-HAWK-2808852	No	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: node-gyp

The new version differs by 40 commits.

• 9a404d6 3.8.0
• 9b9d98f doc: update changelog
• c5929cb doc: update Xcode preferences tab name.
• 8b488da doc: update link to commit guidelines
• b4fe8c1 doc: fix visual studio links
• 536759c configure: use sys.version_info to get python version
• 94c39c6 gyp: fix ninja build failure (GYP patch)
• e8ea74e tools: patch gyp to avoid xcrun errors
• ea9aff4 tools: fix "the the" typos in comments
• 207e5aa gyp: implement LD/LDXX for ninja and FIPS
• b416c5f gyp: enable cctest to use objects (gyp part)
• 40692d0 gyp: add compile_commands.json gyp generator
• fc3c4e2 gyp: float gyp patch for long filenames
• 8aedbfd gyp: backport GYP fix to fix AIX shared suffix
• 6cd84b8 test: formatting and minor fixes for execFileSync replacement
• 60e4213 test: added test/processExecSync.js for when execFileSync is not available.
• 969447c deps: bump request to 2.8.7, fixes heok/hawk issues
• 340403c win: improve parsing of SDK version
• d8a0ca7 3.7.0
• 84cea7b Remove unused gyp test scripts.
• 0540e4e gyp: escape spaces in filenames in make generator
• 88fc6fa Drop dependency on minimatch.
• 1e203c5 Fix include path when pointing to Node.js source
• 53d8cb9 Prefix build targets with /t: on Windows

See the full diff

Package name: request

The new version differs by 28 commits.

• 02fc5b1 Update changelog
• de1ed5a 2.87.0
• a6741d4 Replace hawk dependency with a local implemenation (Release Proposal: v4.1.1 nodejs/node#2943)
• a7f0a36 2.86.1
• 8f2fd4d Update changelog
• 386c7d8 2.86.0
• 76a6e5b Merge pull request Linux node version 0.10.12 does not contain .configure or make files nodejs/node#2885 from ChALkeR/patch-1
• db76838 Merge branch 'patch-1' of github.com:ChALkeR/request
• fb7aeb3 Merge pull request Cannot override arm_fpu config nodejs/node#2942 from simov/fix-tests
• e47ce95 Add Node v10 build target explicitly
• 0c5db42 Skip status code 105 on Node > v10
• d555bd7 Generate server certificates for Node > v10
• 81f8cb5 Remove redundant code
• db17497 Use Buffer.from and Buffer.alloc in tests
• 0d29635 Merge pull request calling function in each other module is not working nodejs/node#2923 from gareth-robinson/cifixes
• 3745cec Correction for Windows OS identification
• 219a298 Alterations for failing CI tests
• bbb3a0b 2.85.1
• 21ef363 Update changelog
• 5dad86e 2.85.0
• 5ba8eb4 Revert "Update hawk to 7.0.7 (Small documentation markup error nodejs/node#2880)"
• b191514 2.84.1
• d77c839 Update changelog
• 4b46a13 2.84.0

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.