[Snyk] Fix for 32 vulnerabilities

[domsavatta2]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • script/package.json
  • script/package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	159/1000 Why? Confidentiality impact: None, Integrity impact: None, Availability impact: High, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.00299, Social Trends: No, Days since published: 771, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: High, Package Popularity Score: 99, Impact: 5.99, Likelihood: 2.65, Score Version: V5	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	Yes	Proof of Concept
	159/1000 Why? Confidentiality impact: None, Integrity impact: None, Availability impact: High, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.00069, Social Trends: No, Days since published: 564, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: High, Package Popularity Score: 99, Impact: 5.99, Likelihood: 2.64, Score Version: V5	Prototype Pollution SNYK-JS-ASYNC-2441827	No	Proof of Concept
	63/1000 Why? Confidentiality impact: None, Integrity impact: None, Availability impact: Low, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.00129, Social Trends: No, Days since published: 908, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: Medium, Package Popularity Score: 99, Impact: 2.35, Likelihood: 2.64, Score Version: V5	Regular Expression Denial of Service (ReDoS) SNYK-JS-BROWSERSLIST-1090194	No	Proof of Concept
	63/1000 Why? Confidentiality impact: None, Integrity impact: None, Availability impact: Low, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.0107, Social Trends: No, Days since published: 1014, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: Medium, Package Popularity Score: 99, Impact: 2.35, Likelihood: 2.67, Score Version: V5	Regular Expression Denial of Service (ReDoS) SNYK-JS-GLOBPARENT-1016905	Yes	Proof of Concept
	61/1000 Why? Confidentiality impact: Low, Integrity impact: Low, Availability impact: None, Scope: Unchanged, Exploit Maturity: No data, User Interaction (UI): Required, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.00058, Social Trends: No, Days since published: 491, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: Medium, Package Popularity Score: 99, Impact: 4.19, Likelihood: 1.45, Score Version: V5	Open Redirect SNYK-JS-GOT-2932019	Yes	No Known Exploit
	67/1000 Why? Confidentiality impact: None, Integrity impact: None, Availability impact: Low, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.00052, Social Trends: No, Days since published: 266, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: Medium, Package Popularity Score: 99, Impact: 2.35, Likelihood: 2.81, Score Version: V5	Regular Expression Denial of Service (ReDoS) SNYK-JS-HTTPCACHESEMANTICS-3248783	Yes	Proof of Concept
	63/1000 Why? Confidentiality impact: None, Integrity impact: None, Availability impact: Low, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.00182, Social Trends: No, Days since published: 980, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: Medium, Package Popularity Score: 99, Impact: 2.35, Likelihood: 2.64, Score Version: V5	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	Yes	Proof of Concept
	239/1000 Why? Confidentiality impact: High, Integrity impact: High, Availability impact: High, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): High, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.00606, Social Trends: No, Days since published: 980, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: High, Package Popularity Score: 99, Impact: 9.79, Likelihood: 2.43, Score Version: V5	Command Injection SNYK-JS-LODASH-1040724	Yes	Proof of Concept
	151/1000 Why? Confidentiality impact: Low, Integrity impact: Low, Availability impact: Low, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.01362, Social Trends: No, Days since published: 1574, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: High, Package Popularity Score: 99, Impact: 5.62, Likelihood: 2.67, Score Version: V5	Prototype Pollution SNYK-JS-LODASH-450202	Yes	Proof of Concept
	150/1000 Why? Confidentiality impact: Low, Integrity impact: Low, Availability impact: Low, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.01055, Social Trends: No, Days since published: 1158, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: High, Package Popularity Score: 99, Impact: 5.62, Likelihood: 2.67, Score Version: V5	Prototype Pollution SNYK-JS-LODASH-608086	Yes	Proof of Concept
	149/1000 Why? Confidentiality impact: Low, Integrity impact: Low, Availability impact: Low, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.00117, Social Trends: No, Days since published: 1724, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: High, Package Popularity Score: 99, Impact: 5.62, Likelihood: 2.64, Score Version: V5	Prototype Pollution SNYK-JS-LODASH-73638	Yes	Proof of Concept
	133/1000 Why? Confidentiality impact: None, Integrity impact: None, Availability impact: High, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): High, Attack Complexity: High, Attack Vector: Network, EPSS: 0.00317, Social Trends: No, Days since published: 1662, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: Medium, Package Popularity Score: 99, Impact: 5.99, Likelihood: 2.2, Score Version: V5	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-73639	Yes	Proof of Concept
	115/1000 Why? Confidentiality impact: None, Integrity impact: None, Availability impact: High, Scope: Unchanged, Exploit Maturity: No data, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.01055, Social Trends: No, Days since published: 2681, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: High, Package Popularity Score: 99, Impact: 5.99, Likelihood: 1.92, Score Version: V5	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-1019388	Yes	No Known Exploit
	45/1000 Why? Confidentiality impact: None, Integrity impact: None, Availability impact: Low, Scope: Unchanged, Exploit Maturity: No data, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.00051, Social Trends: No, Days since published: 370, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: Medium, Package Popularity Score: 99, Impact: 2.35, Likelihood: 1.89, Score Version: V5	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-3050818	Yes	No Known Exploit
	58/1000 Why? Confidentiality impact: None, Integrity impact: None, Availability impact: Low, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: High, Attack Vector: Network, EPSS: 0.0037, Social Trends: No, Days since published: 581, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: Low, Package Popularity Score: 99, Impact: 2.35, Likelihood: 2.43, Score Version: V5	Prototype Pollution SNYK-JS-MINIMIST-2429795	No	Proof of Concept
	137/1000 Why? Confidentiality impact: Low, Integrity impact: Low, Availability impact: Low, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: High, Attack Vector: Network, EPSS: 0.00105, Social Trends: No, Days since published: 1321, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: Medium, Package Popularity Score: 99, Impact: 5.62, Likelihood: 2.42, Score Version: V5	Prototype Pollution SNYK-JS-MINIMIST-559764	No	Proof of Concept
	63/1000 Why? Confidentiality impact: None, Integrity impact: None, Availability impact: Low, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.00119, Social Trends: No, Days since published: 910, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: Medium, Package Popularity Score: 99, Impact: 2.35, Likelihood: 2.64, Score Version: V5	Regular Expression Denial of Service (ReDoS) SNYK-JS-POSTCSS-1255640	No	Proof of Concept
	49/1000 Why? Confidentiality impact: None, Integrity impact: Low, Availability impact: None, Scope: Unchanged, Exploit Maturity: No data, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.00045, Social Trends: No, Days since published: 22, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: Medium, Package Popularity Score: 99, Impact: 2.35, Likelihood: 2.06, Score Version: V5	Improper Input Validation SNYK-JS-POSTCSS-5926692	Yes	No Known Exploit
	169/1000 Why? Confidentiality impact: None, Integrity impact: None, Availability impact: High, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.00091, Social Trends: No, Days since published: 125, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: High, Package Popularity Score: 99, Impact: 5.99, Likelihood: 2.81, Score Version: V5	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	No	Proof of Concept
	317/1000 Why? Confidentiality impact: High, Integrity impact: High, Availability impact: High, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: High, Attack Vector: Network, EPSS: 0.00252, Social Trends: No, Days since published: 591, Reachable: No, Transitive dependency: No, Is Malicious: No, Business Criticality: High, Provider Urgency: High, Package Popularity Score: 98, Impact: 9.79, Likelihood: 3.23, Score Version: V5	Command Injection SNYK-JS-SIMPLEGIT-2421199	Yes	Proof of Concept
	317/1000 Why? Confidentiality impact: High, Integrity impact: High, Availability impact: High, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: High, Attack Vector: Network, EPSS: 0.00151, Social Trends: No, Days since published: 573, Reachable: No, Transitive dependency: No, Is Malicious: No, Business Criticality: High, Provider Urgency: High, Package Popularity Score: 98, Impact: 9.79, Likelihood: 3.23, Score Version: V5	Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') SNYK-JS-SIMPLEGIT-2434306	Yes	Proof of Concept
	339/1000 Why? Confidentiality impact: High, Integrity impact: High, Availability impact: High, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: High, Attack Vector: Network, EPSS: 0.00436, Social Trends: No, Days since published: 322, Reachable: No, Transitive dependency: No, Is Malicious: No, Business Criticality: High, Provider Urgency: High, Package Popularity Score: 98, Impact: 9.79, Likelihood: 3.46, Score Version: V5	Remote Code Execution (RCE) SNYK-JS-SIMPLEGIT-3112221	Yes	Proof of Concept
	339/1000 Why? Confidentiality impact: High, Integrity impact: High, Availability impact: High, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: High, Attack Vector: Network, EPSS: 0.00425, Social Trends: No, Days since published: 273, Reachable: No, Transitive dependency: No, Is Malicious: No, Business Criticality: High, Provider Urgency: High, Package Popularity Score: 98, Impact: 9.79, Likelihood: 3.46, Score Version: V5	Remote Code Execution (RCE) SNYK-JS-SIMPLEGIT-3177391	Yes	Proof of Concept
	154/1000 Why? Confidentiality impact: None, Integrity impact: None, Availability impact: High, Scope: Unchanged, Exploit Maturity: No data, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.01055, Social Trends: No, Days since published: 767, Reachable: No, Transitive dependency: No, Is Malicious: No, Business Criticality: High, Provider Urgency: High, Package Popularity Score: 98, Impact: 5.99, Likelihood: 2.56, Score Version: V5	Regular Expression Denial of Service (ReDoS) SNYK-JS-STYLELINT-1585622	Yes	No Known Exploit
	136/1000 Why? Confidentiality impact: None, Integrity impact: None, Availability impact: High, Scope: Unchanged, Exploit Maturity: No data, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: High, Attack Vector: Network, EPSS: 0.01055, Social Trends: No, Days since published: 1520, Reachable: No, Transitive dependency: No, Is Malicious: No, Business Criticality: High, Provider Urgency: Medium, Package Popularity Score: 98, Impact: 5.99, Likelihood: 2.26, Score Version: V5	Regular Expression Denial of Service (ReDoS) SNYK-JS-STYLELINT-460283	Yes	No Known Exploit
	60/1000 Why? Confidentiality impact: None, Integrity impact: None, Availability impact: Low, Scope: Unchanged, Exploit Maturity: No data, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.00066, Social Trends: No, Days since published: 466, Reachable: No, Transitive dependency: No, Is Malicious: No, Business Criticality: High, Provider Urgency: Medium, Package Popularity Score: 99, Impact: 2.35, Likelihood: 2.52, Score Version: V5	Regular Expression Denial of Service (ReDoS) SNYK-JS-TERSER-2806366	Yes	No Known Exploit
	160/1000 Why? Confidentiality impact: None, Integrity impact: None, Availability impact: High, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.00632, Social Trends: No, Days since published: 1091, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: High, Package Popularity Score: 99, Impact: 5.99, Likelihood: 2.66, Score Version: V5	Regular Expression Denial of Service (ReDoS) SNYK-JS-TRIM-1017038	Yes	Proof of Concept
	114/1000 Why? Confidentiality impact: None, Integrity impact: None, Availability impact: High, Scope: Unchanged, Exploit Maturity: No data, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.00088, Social Trends: No, Days since published: 876, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: High, Package Popularity Score: 99, Impact: 5.99, Likelihood: 1.89, Score Version: V5	Denial of Service (DoS) SNYK-JS-TRIMNEWLINES-1298042	Yes	No Known Exploit
	137/1000 Why? Confidentiality impact: Low, Integrity impact: Low, Availability impact: Low, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: High, Attack Vector: Network, EPSS: 0.00044, Social Trends: No, Days since published: 1315, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: Medium, Package Popularity Score: 99, Impact: 5.62, Likelihood: 2.42, Score Version: V5	Prototype Pollution SNYK-JS-YARGSPARSER-560381	Yes	Proof of Concept
	57/1000 Why? Confidentiality impact: None, Integrity impact: None, Availability impact: Low, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: High, Attack Vector: Network, EPSS: 0.00088, Social Trends: No, Days since published: 2071, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: Low, Package Popularity Score: 99, Impact: 2.35, Likelihood: 2.42, Score Version: V5	Regular Expression Denial of Service (ReDoS) npm:braces:20180219	Yes	Proof of Concept
	140/1000 Why? Confidentiality impact: Low, Integrity impact: Low, Availability impact: Low, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): Low, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.00097, Social Trends: No, Days since published: 2077, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: Medium, Package Popularity Score: 99, Impact: 5.62, Likelihood: 2.48, Score Version: V5	Prototype Pollution npm:lodash:20180130	Yes	Proof of Concept
	114/1000 Why? Confidentiality impact: None, Integrity impact: None, Availability impact: High, Scope: Unchanged, Exploit Maturity: No data, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.00114, Social Trends: No, Days since published: 2681, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: High, Package Popularity Score: 99, Impact: 5.99, Likelihood: 1.89, Score Version: V5	Regular Expression Denial of Service (ReDoS) npm:minimatch:20160620	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: electron-chromedriver

The new version differs by 40 commits.

• a23c983 chore: update version to v21.0.0
• 0ac5c76 chore(deps): Bump got and @ electron/get (Auto-indent on paste indenting too much atom/atom#102)
• 1fe2c99 chore: fix release workflow
• afd10d3 build: update Xcode image on CircleCI (Port to node-webkit atom/atom#100)
• 99b5a6a chore: update version to v20.0.0
• a2bb9c6 build: add npm publish step to release workflow (Tokenize asynchronously atom/atom#99)
• 4831462 build: run tests before releasing
• d51fcaa chore: add release update action (Tabs atom/atom#98)
• c27d694 chore: update to v19.0.0 (Update the screen once per keystroke, and make typing faster atom/atom#97)
• d136e7c chore: update package-lock.json
• 0871077 chore: add semantic commit action
• f2c1267 chore(deps): Bump minimist from 1.2.5 to 1.2.6 (cmd-shift-[ should display the previously displayed buffer atom/atom#96)
• 42bf5fe chore(deps): Bump ansi-regex from 3.0.0 to 3.0.1 (Hitting ctrl-a on an empty line takes you to the next line atom/atom#95)
• 9bf997a chore: bump to 18.0.0 (Atomic soft tabs atom/atom#94)
• 85a0ed1 chore(deps): Bump ajv from 6.10.2 to 6.12.6 (Ignore gitignore'd paths in fuzzy file finder atom/atom#93)
• 1e78180 chore: update to v17.0.0 (Highlight Trailing Whitespace extension atom/atom#92)
• e68d020 Merge pull request Hide cursor when there's a selection atom/atom#91 from electron/v16.0.0
• 9e8451c feat: update to v16.0.0
• d6c86d1 Merge pull request Indent-related features support hard-tabs atom/atom#89 from electron/v15.0.0
• 4337f07 chore: bump to v15.0.0
• 94f0d4b Merge pull request Add initial libgit2 support atom/atom#88 from lesha1201/chore/bump-to-15
• df9d838 chore: bump to 15.0.0
• 3ef0ef2 Merge pull request Line highlights don't redraw if tree view is hidden atom/atom#87 from electron/14.0.0-bump
• 21c4064 chore: bump to 14.0.0

See the full diff

Package name: electron-mksnapshot

The new version differs by 41 commits.

• 8968d4f chore: filter out unneeded arg if its there
• 2ed409f chore: update version to v21.3.3
• b3c2f19 chore(deps): bump got and @ electron/get ([Snyk] Fix for 2 vulnerabilities #67)
• 2be651f ci: bump version before installing dependencies in release workflow (Infer file mode from shebangs atom/atom#75)
• d3d5072 chore: set @ wg-releases as CODEOWNERS ([Snyk] Fix for 5 vulnerabilities #73)
• bc58b04 docs: remove stale badge (Crasher atom/atom#74)
• f119142 docs: fix npm badge links ([Snyk] Security upgrade express from 4.16.3 to 4.22.0 #72)
• 6d93ab4 docs: update CI badge links ([Snyk] Security upgrade mocha from 10.1.0 to 10.6.0 #69)
• 68c5199 chore: update version to v21.0.0
• 4b4903e chore: fix release workflow
• 5a4ed6a build: update Xcode image on CircleCI ([Snyk] Security upgrade sinon from 9.2.1 to 21.0.1 #66)
• 5650831 chore: update version to v20.0.0
• 687acac build: add npm publish step to release workflow ([Snyk] Security upgrade eslint from 5.16.0 to 9.0.0 #62)
• 44cd5ea build: run tests before releasing
• daaa6b5 chore: add release update action ([Snyk] Security upgrade mocha from 10.1.0 to 10.6.0 #61)
• 31ef45c chore: update to 19.0.0 ([Snyk] Security upgrade eslint from 5.16.0 to 9.0.0 #60)
• cbde3f7 chore: update package-lock.json
• 699f43e chore(deps): bump lodash from 4.17.20 to 4.17.21 ([Snyk] Security upgrade eslint from 5.16.0 to 9.15.0 #41)
• 8a73378 chore(deps): bump hosted-git-info from 2.6.0 to 2.8.9 ([Snyk] Security upgrade mocha from 10.1.0 to 11.0.1 #42)
• 879f73b chore(deps): bump glob-parent from 5.1.0 to 5.1.2 ([Snyk] Security upgrade postcss from 8.4.31 to 8.5.0 #46)
• 76f1048 chore(deps): bump normalize-url from 4.5.0 to 4.5.1 ([Snyk] Security upgrade stylelint from 14.0.0 to 16.13.0 #47)
• 38050d5 chore(deps): bump path-parse from 1.0.6 to 1.0.7 ([Snyk] Security upgrade stylelint from 14.0.0 to 16.14.0 #48)
• bd620d3 chore(deps): bump ajv from 6.10.2 to 6.12.6 ([Snyk] Security upgrade glob from 7.0.3 to 11.0.3 #54)
• 6f69827 chore: add semantic commit action

See the full diff

Package name: electron-packager

The new version differs by 27 commits.

• 9124e28 16.0.0
• 88e8173 docs: Update NEWS.md
• 5c0102a fix: properly import info logger (Handle EACCES errors when saving an editor atom/atom#1405)
• 0d692d7 feat!: upgrade Node.js to 14 LTS (Panes stick around when they shouldnt atom/atom#1399)
• a723fa8 build: bump got to 2.0.0 (Select an indented line of text by placing your cursor at the beginning of the line and pressing the atom/atom#1397)
• 8a86df2 15.5.2
• c7ecd1c docs: update NEWS.md
• 1baed70 chore: remove node 10 job (Speed up keymap loading atom/atom#1403)
• 7c01d6f revert: "feat!: upgrade Node.js to 14 LTS (text atom/atom#1393)" (Show low disk space errors when running CI atom/atom#1398)
• b0f27bc fix: ignore node_gyp_bins if it exists (pacman atom/atom#1391)
• a6db65f chore: bump fs-extra from 9.1.0 to 10.1.0 (If I right-click on an item in Atom that has a context menu (like a file in the tree view) I can atom/atom#1358)
• 7dcaf44 chore(deps): bump yargs-parser from 20.2.9 to 21.1.1 (pacman atom/atom#1395)
• c6b4c78 feat!: upgrade Node.js to 14 LTS (text atom/atom#1393)
• e147b5e docs: update SUPPORT.md
• a65eb75 fix: package should not log info on --quiet flag (Atom keeps freezing. When it does, atom renderer is at nearly 100% cpu in activity monitor. atom/atom#1361)
• 4c6c88f chore: bump sinon from 13.0.2 to 14.0.0 (who wants to live forever atom/atom#1364)
• 49c726d 15.5.1
• 49e74d7 docs: update NEWS.md
• 6845866 fix: build universal packages sequentially and allow hooks to return error in TS (Can’t Rename a file by only changing the case of the filename atom/atom#1359)
• efc2ae6 15.5.0
• 73d2ffa docs: update NEWS.md
• c6849c2 feat: integrate @ electron/universal (First package dev journal atom/atom#1346)
• b66e97f chore: bump actions/checkout from 2 to 3 (Attempting to launch atom while it's updating should give me a nice message atom/atom#1341)
• 8b49d7c chore: bump sinon from 12.0.1 to 13.0.1 (Word movement uses end-of-word and beginning-of-word atom/atom#1329)

See the full diff

Package name: fs-admin

The new version differs by 110 commits.

• 4bc7dfe 0.20.0
• 0dcecb2 Merge pull request Dirty Laundry: Removing the linen background. atom/atom#115 from atom/boolean-instead-of-number
• e82121c Merge pull request loading bootstrap.min.css leads to unresponsive atom with gray screen atom/atom#150 from atom/dependabot/npm_and_yarn/prebuild-11.0.3
• 66b02f6 Merge pull request Fuzzy find files using content under cursor atom/atom#141 from atom/dependabot/npm_and_yarn/node-gyp-8.4.1
• 5d924d9 Merge pull request Add "save as" keybinding atom/atom#144 from atom/dependabot/npm_and_yarn/node-addon-api-4.3.0
• 7425d26 Bump prebuild from 11.0.0 to 11.0.3
• de16c9a Merge pull request Allow tree view sidebar to be resized. atom/atom#136 from atom/dependabot/npm_and_yarn/standard-16.0.4
• 29215ed Merge pull request Merge dev into master atom/atom#126 from atom/dependabot/npm_and_yarn/path-parse-1.0.7
• f385261 Bump node-gyp from 8.0.0 to 8.4.1
• 9bb9d5f Bump standard from 16.0.3 to 16.0.4
• bba736c Bump node-addon-api from 4.2.0 to 4.3.0
• e600ffe Merge pull request Move All the current stylesheet into "Atom - Dark" atom/atom#145 from atom/dependabot/npm_and_yarn/mocha-9.2.0
• f358060 Merge pull request Indicate "searching" state in places like "Find across whole project" atom/atom#147 from atom/dependabot/npm_and_yarn/prebuild-install-7.0.1
• fdb6892 Bump mocha from 8.4.0 to 9.2.0
• 1f07e6b Bump prebuild-install from 6.1.2 to 7.0.1
• ae01fb9 Merge pull request Having undo buffer outside of window session. atom/atom#148 from icecream17/patch-1
• d4cdffb macos hosted runners are available
• e212161 Merge pull request Change title of Don't Save button atom/atom#133 from atom/dependabot/npm_and_yarn/node-addon-api-4.2.0
• f2bb058 Bump prebuild from 10.0.1 to 11.0.0 (nunemaker wishlist atom/atom#134)
• b356b00 Bump node-addon-api from 3.1.0 to 4.2.0
• 5f9d85b Bump path-parse from 1.0.6 to 1.0.7
• e215b58 Use Boolean instead of Number
• ad11452 Bump node-gyp from 7.1.2 to 8.0.0 (WIP: Make Atom look and behave more like a Mac app atom/atom#109)
• 1fcf996 Bump mocha from 8.3.2 to 8.4.0 (Everybody everybody cut footloose atom/atom#114)

See the full diff

Package name: klaw-sync

The new version differs by 14 commits.

• 2059501 update changelog, bump to v2.0.0
• 84532ab 2.0.0
• 3fc387f Merge pull request [Snyk] Fix for 16 vulnerabilities #2 from manidlou/add-filter-opt
• 4323677 update readme
• e76afdf change option name, update readme and changelog
• c4c78c5 remove unnecessary deps
• 2389ab0 update readme and changelog
• 56d1828 update changelog
• dd27335 refactor filter additional option, update readme
• e56432d add more tests for filter, update readme
• 739a6e3 remove ignore option, remove micromatch, refactor filter option, update bm.js
• a8c98ab fix bug: ignore with glob pattern (closes [Snyk] Fix for 32 vulnerabilities #1), add filter option
• ab77725 benchmark/bm.js: set async run to false
• 4d498ea benchmark/bm.js: set async run to false

See the full diff

Package name: legal-eagle

The new version differs by 17 commits.

• ace984c Merge pull request [Snyk] Security upgrade webdriverio from 5.9.2 to 6.0.0 #15 from atom/upgrade-dependencies
• f11ee5c Remove outdated --harmony_collections parameter from build script
• 6b9b0a8 Raise lowest Node.js version on CI to 4
• 19a71bf Use --force to enable tests on Node 0.1 through 10
• 5ab9f2e Add Node 8 and 10 to the build matrix
• be39876 version bump
• eafbe4b upgrade dependencies
• d83fa2f add a lockfile with the current contents
• e4ab0bd Merge pull request [Snyk] Security upgrade glob from 7.2.3 to 9.0.0 #14 from atom/ccr
• ef25a87 refer to atom/atom CoC per @ lee-dohm review
• 9b669b6 community files
• 962489d 0.15.0
• 98c36c2 Merge pull request [Snyk] Fix for 1 vulnerabilities #13 from atom/more-license-texts
• 71f145b update year
• 35c43b1 use recommended license field https://docs.npmjs.com/files/package.json#license
• e7ded01 capture more variations
• b31a552 retain LICENSE text when license detected from package metadata

See the full diff

Package name: mkdirp

The new version differs by 4 commits.

• b2e7ba0 0.5.2
• c5b97d1 bump minimist to 1.2 to fix security issue
• f2003bb test: add v4 and v5 to travis
• b8629ff tools: update tap + mock-fs. Fix broken test

See the full diff

Package name: npm-check

The new version differs by 5 commits.

• eff52bc 6.0.1
• c6e9911 update package-lock, add renovate.json.
• 3c8798d Latest packages; added basic yarn support; added rc file depcheck api support (Hide text until syntax highlighting finishes atom/atom#397)
• f92f449 Merge pull request On cefode branch, subsequent refreshes slower than initial load atom/atom#411 from abernier/patch-1
• 4a261a4 updated `npm-outdated` doc link

See the full diff

Package name: semver

The new version differs by 69 commits.

• 63169c1 chore: release 5.7.2
• 2f8fd41 fix: better handling of whitespace (Copy paste does not work when you select a different keyboard language atom/atom#585)
• deb5ad5 chore: @ npmcli/template-oss@4.16.0
• c83c18c 5.7.1
• 956e228 Correct typo in README
• 8055dda 5.7.0
• 604e73d auto-publishing scripts
• bed01e2 remove the nomin comments, since we don't minify any more anyway
• 9cb68f1 document parse method
• 38d42ca 5.7 changelog
• da8a771 Fix code style and get to 100% coverage
• 4d8306b drop windows testing
• 1af213f next-gen tap for testing
• b99ae3b Add semver.minVersion function.
• 6086e5a remove node 4
• a462bec Document `includePrerelease` flag more
• c529221 Use https when possible. (Move matching bracket insertion to bracket-matcher package atom/atom#246)
• a1b6cb8 Add changelog, fix A better dot atom atom/atom#220
• 347d4a0 Move 'standard' from scripts.test to .posttest
• a4ff4ff Apply 'standard' to bin/semver, add to npm test
• a34ca82 Add 'standard' to dev dependencies and npm test
• b30f2ce Apply 'standard' auto-fixes to remainder of tests
• 42e765b Apply 'standard' to test/index.js
• 824e08a Apply 'standard' to test/cli.js

See the full diff

Package name: simple-git

The new version differs by 250 commits.

• d716d32 Merge pull request Atom shell corners are not really curved atom/atom#877 from steveukx/changeset-release/main
• 1a12952 Version Packages
• 12b8fc3 Merge pull request Search bar padding atom/atom#864 from steveukx/dependabot/npm_and_yarn/minimatch-3.0.5
• ec97a39 Block unsafe pack (push --exec) (Upgrade telepath to v0.5.1 atom/atom#882)
• 0a623e5 Feat/unsafe pack (Clean up globals atom/atom#881)
• b45d08b Merge pull request #876 from steveukx/feat/support-checkout-B
• 97fde2c Add support for using the `-B` modifier instead of the default `-b` when using `checkoutBranch` / `checkoutLocalBranch`.
• edfd459 Update readme.md
• 459ec92 Merge pull request Timecop atom/atom#868 from steveukx/changeset-release/main
• c9fc61f Version Packages
• de570ac Fix/non strings (Default theme provides insufficient contrast in bright environments atom/atom#867)
• 7efdcbc chore(deps): bump minimatch from 3.0.4 to 3.0.5
• e1d66b6 Merge pull request Add option to have cmd-w close the window when there are no editors open atom/atom#863 from steveukx/changeset-release/main
• d4764bf Version Packages
• 7746480 Chore: bump lerna, jest and create prettier workflow (Update atom-shell to v0.4.9. atom/atom#862)
• 47030d5 Merge pull request Changing the type for a file isn't very discoverable atom/atom#861 from steveukx/security/protocols
• 6b3c631 Create the `unsafe` plugin to configure how `simple-git` treats known potentially unsafe operations.
• 3324eed Merge pull request Replace the default find/replace package in Atom atom/atom#855 from steveukx/changeset-release/main
• e459622 Version Packages
• 2ea0231 Merge pull request Private Alpha Focus List atom/atom#854 from steveukx/chore/update-lerna
• 5a2e7e4 Add version parsing support for non-numeric patches (to include built… (Public API atom/atom#853)
• 88fee05 Chore: bump lerna to latest `5.5.1`
• 0f964ba Merge pull request Project scan additions atom/atom#849 from steveukx/changeset-release/main
• 6460a1f Version Packages

See the full diff

Package name: stylelint

The new version differs by 250 commits.

• 060310c 14.0.0
• ff4a1ef Prepare CHANGELOG
• 8d2f6e1 Bump postcss (Uncaught Error: ENOENT, open 'undefined//Users/atlosm/workspace/tech-ex-2015/backend/src/main/scala/techex/cases/project.json' atom/atom#5619)
• f552608 Merge pull request Fix multi-folder regressions atom/atom#5618 from stylelint/dependabot/npm_and_yarn/husky-7.0.4
• 7ed17ad Bump husky from 7.0.2 to 7.0.4
• 4d9f75e Merge pull request Tree-view is broken on Windows 8.1 since 0.180.0 atom/atom#5617 from stylelint/dependabot/npm_and_yarn/jest-27.3.1
• bc9dd0b Bump jest from 27.2.5 to 27.3.1
• 82e2507 Merge pull request Config settings not working. atom/atom#5604 from stylelint/v14
• 16d259f Update CHANGELOG.md
• 70b1149 Fix false positives for dynamic-range keywords in media-feature-name-no-unknown (atom.project.path === undefined atom/atom#5613)
• 8dca498 Show more info in missing customSyntax warning (Atom helper high CPU on Mac atom/atom#5611)
• 2eee0a9 Remove v14 CI triggers (Failed to spawn command clang atom/atom#5610)
• 12f8081 14.0.0-0
• 5dd7ec1 Prepare 14.0.0
• 67313a3 Add support for `extends` in `overrides` config (Add CORS headers for atom.io API usage atom/atom#5603)
• b6fd2fc Document no need for postcss-html maintainer (--dev linked packages are undefined unless in --dev mode atom/atom#5602)
• bf28025 Recommend using shared configs ( fix deb for debian and ubuntu 14.04TLS comfortability  atom/atom#5598)
• 07118d6 Update CHANGELOG.md
• 367142a Change `ignoreFiles` to be extendable (Combined/Shared UI + Syntax theme atom/atom#5596)