[Snyk] Fix for 1 vulnerabilities

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	461/1000 Why? Recently disclosed, Has a fix available, CVSS 3.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-DEBUG-3227433	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: eslint

The new version differs by 140 commits.

• 439e8e6 4.7.0
• 2ec62f9 Build: changelog update for 4.7.0
• 787b78b Upgrade: Espree v3.5.1 (fixes #9153) (#9314)
• 1488b51 Update: run rules after `node.parent` is already set (fixes #9122) (#9283)
• 4431d68 Docs: fix wrong config in max-len example. (#9309)
• 9d1df92 Chore: Revert "avoid handling Rules instances in config-validator" (#9295)
• 7d24dde Docs: Fix code snippet to refer to the correct option (#9313)
• 12388d4 �Chore: rewrite parseListConfig for a small perf gain. (#9300)
• ce1f084 Update: fix MemberExpression handling in no-extra-parens (fixes #9156)
• 0c720a3 Update: allow autofixing when using processors (fixes #7510) (#9090)
• 838df76 Chore: upgrade deps. (#9289)
• f12def6 Update: indent flatTernary option to handle `return` (fixes #9285) (#9296)
• e220687 Fix: remove autofix for var undef inits (fixes #9231) (#9288)
• 002e199 Docs: fix no-restricted-globals wrong config. (#9305)
• fcfe91a Docs: fix wrong config in id-length example. (#9303)
• 2731f94 Update: make newline-per-chained-call fixable (#9149)
• 61f1093 Chore: avoid monkeypatching Linter instances in RuleTester (#9276)
• 28929cb Chore: remove Linter#reset (refs #9161) (#9268)
• abc8634 Build: re-run browserify when generating site (#9275)
• 7685fed Fix: IIFE and arrow functions in no-invalid-this (fixes #9126) (#9258)
• 7c95d5d Chore: avoid handling Rules instances in config-validator (#9277)
• 2b1eba2 Chore: enable eslint-plugin/no-deprecated-context-methods (#9279)
• 981f933 Fix: reuse the AST of source code object in verify (#9256)
• cd698ba Docs: move RuleTester documentation to Node.js API page (#9273)

See the full diff

Package name: eslint-config-mailonline

The new version differs by 19 commits.

• c47f661 refactor: upgrade eslint-plugin-unicorn version
• 4489ad0 fix: update semantic-release NPM script and run only in master
• 6b4a6bb fix: add Travis deploy email configuration
• 3217747 fix: use public repository to create lock file
• fcc02db refactor: rename Travis deploy property
• 0c390f3 fix: add encrypted deploy api_token
• 043f7e9 chore: upgrade to NodeJS 14
• 999380c refactor: upgrade dependencies
• ef718a5 fix: fix import/first option
• 53b7a66 docs(readme): add Greenkeeper badge
• 53e0f8c fix: disable import/no-namespace
• d622962 fix: move canonical rules into package
• aafc230 fix: move react overrides to react config
• 6d96ee2 feat: remove import/prefer-default-export and import/max-dependencies
• 0ab36cc feat: forbid anonymous defaults
• 135bda2 fix: relax React rules
• c5eb8a7 fix: fix travis targets
• 94a7e2b chore: remove package-lock
• 2d55514 chore: make webpack optional

See the full diff

Package name: mocha

The new version differs by 70 commits.

• d69bf14 Release v4.0.0
• 171b9f9 pfix "prepublishOnly" potential portability problem
• 60e39d9 Update link to wiki (GitHub at the leading `--`)
• 804f9d5 Update link because GitHub ate the leading `--`
• 3326c23 update CHANGELOG for v4.0.0 [ci skip]
• 6dd9252 add link to wiki on --compilers deprecation
• 96318e1 Deprecate --compilers
• 92beda9 drop bower support
• 58a4c6a remove unused .npmignore
• 7af6611 kill Date#toISOString shim
• 43501a2 reduce noise about slow tests; make a few tests faster, etc.
• fa228e9 update --exit / --no-exit integration test for new default behavior
• 3fdd3ff Switch default from forced exit to no-exit
• c5d69e0 add integration tests for --exit/--no-exit
• 3a7f8dc enhance runMochaJSON() helper by returning the subprocess instance
• 0690d1a remove unused manual tests which remained in test/misc/
• 49e01d5 move the "only" specs out of test/misc/only/ and into test/only/
• 16ffca2 remove shims to avoid decrease in coverage
• 1f3b39a upgrade diff
• e6e3519 upgrade commander
• f1efc14 remove special treatment of unsupported node version in travis before-install script
• bc50020 upgrade debug
• 1103f9c upgrade coveralls
• f09ebf6 remove readable-stream

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)