[Snyk] Upgrade semver from 5.5.1 to 5.7.2

[NOUIY]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade semver from 5.5.1 to 5.7.2.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 4 versions ahead of your current version.
• The recommended version was released 4 months ago, on 2023-07-10.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: semver

• 5.7.2 - 2023-07-10
  

  5.7.2 (2023-07-10)

  Bug Fixes

  • 2f8fd41 #585 better handling of whitespace (#585) (@ joaomoreno, @ lukekarrys)
• 5.7.1 - 2019-08-12
• 5.7.0 - 2019-03-26
• 5.6.0 - 2018-10-10
• 5.5.1 - 2018-08-17

from semver GitHub release notes

Commit messages

Package name: semver

• 63169c1 chore: release 5.7.2
• 2f8fd41 fix: better handling of whitespace ([Snyk] Upgrade @azure/storage-blob from 12.8.0 to 12.16.0 #585)
• deb5ad5 chore: @ npmcli/template-oss@4.16.0
• c83c18c 5.7.1
• 956e228 Correct typo in README
• 8055dda 5.7.0
• 604e73d auto-publishing scripts
• bed01e2 remove the nomin comments, since we don't minify any more anyway
• 9cb68f1 document parse method
• 38d42ca 5.7 changelog
• da8a771 Fix code style and get to 100% coverage
• 4d8306b drop windows testing
• 1af213f next-gen tap for testing
• b99ae3b Add semver.minVersion function.
• 6086e5a remove node 4
• a462bec Document `includePrerelease` flag more
• c529221 Use https when possible. (Bump moment from 2.24.0 to 2.29.4 #246)
• a1b6cb8 Add changelog, fix [Snyk] Fix for 1 vulnerabilities #220
• 347d4a0 Move 'standard' from scripts.test to .posttest
• a4ff4ff Apply 'standard' to bin/semver, add to npm test
• a34ca82 Add 'standard' to dev dependencies and npm test
• b30f2ce Apply 'standard' auto-fixes to remainder of tests
• 42e765b Apply 'standard' to test/index.js
• 824e08a Apply 'standard' to test/cli.js

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs