[Snyk] Security upgrade trembita from 1.0.5 to 1.2.25

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-VALIDATOR-1090599	No	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-VALIDATOR-1090600	No	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-VALIDATOR-1090601	No	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-VALIDATOR-1090602	No	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: trembita

The new version differs by 250 commits.

• 87a1221 release(version): Release 1.2.25 [skip ci]
• b9953b1 chore: update deps (#298)
• e8e6187 chore(deps-dev): bump semantic-release from 17.3.7 to 17.3.8
• 6a54cac chore(deps-dev): bump chai from 4.2.0 to 4.3.0
• 5bab21b chore(deps-dev): bump eslint from 7.18.0 to 7.19.0
• 269a176 chore(deps-dev): bump nock from 13.0.6 to 13.0.7
• b0fb41c chore(deps-dev): bump semantic-release from 17.3.6 to 17.3.7
• c7738fb chore(deps-dev): bump semantic-release from 17.3.5 to 17.3.6
• aa39c03 chore(deps-dev): bump semantic-release from 17.3.4 to 17.3.5
• d871dab chore(deps-dev): bump nock from 13.0.5 to 13.0.6
• 52e11e8 chore(deps-dev): bump semantic-release from 17.3.3 to 17.3.4
• 530378b chore(deps-dev): bump eslint from 7.17.0 to 7.18.0
• c13b08b chore(deps-dev): bump semantic-release from 17.3.2 to 17.3.3
• 9c3940a chore(deps-dev): bump semantic-release from 17.3.1 to 17.3.2
• f3a6bc7 chore(deps-dev): bump eslint from 7.16.0 to 7.17.0
• a989618 chore(deps-dev): bump semantic-release from 17.3.0 to 17.3.1
• 26bbb7b chore(deps-dev): bump eslint from 7.15.0 to 7.16.0
• 247c190 chore(deps): bump validator from 13.5.1 to 13.5.2
• 68ddcc1 chore(deps-dev): bump eslint from 7.14.0 to 7.15.0
• d456cfc chore(deps): bump validator from 13.5.0 to 13.5.1
• 37207f2 chore(deps): bump validator from 13.1.17 to 13.5.0
• 33c5d1e chore(deps-dev): bump prettier from 2.2.0 to 2.2.1
• b9485b9 chore(deps-dev): bump semantic-release from 17.2.4 to 17.3.0
• 223c6f9 chore(deps-dev): bump eslint from 7.13.0 to 7.14.0

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

[ghost]

Sider has detected 1 warning on analyzing the commit 213401b.

• ⚠️ Goodcheck

If the errors persist even after retrying, the following actions may resolve them:

• Update tool dependencies
• Configure failed tools
• Configure sider.yml
• Turn off unused tools

If you still have problems, feel free to ask us via chat. 💬

---

You can turn off such notifications if unnecessary.