[Snyk] Fix for 1 vulnerabilities

[monch1962]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	658/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: cucumber

The new version differs by 35 commits.

• d195239 Release 6.0.0
• 009e5ce fix build release
• 288468b add ability to retry flakey tests (#1205)
• 396e034 usage: account for code wrapping (#1234)
• 08f00ae add .eslintignore
• c3bbfb5 remove dep: @ babel/polyfill
• 4b6034f update deps
• dfe69ed fix parallel
• 1d38236 Bump eslint-utils from 1.3.1 to 1.4.2 (#1228)
• 01aa16e parallel: beforeAll / afterAll errors fail the suite (#1213)
• 7a5fdcb update dep: lodash
• 305ecc0 support node 12
• 37381df update dependencies
• 0d15e02 update unreleased changelog
• 0dbd6a3 fix CLI help link (#1197)
• efffc9d update unreleased changelog
• 42e6b4c update features to parse event protocol instead of json
• c74eaf0 fix security alerts
• eade032 prevent after hooks from updating skipped scenarios to passed (#1162)
• f706d2c Update README.md
• 1079c0e update usage-json formatter: fix pattern, add code and patternType
• 751477d update parallel notes
• d74bc45 Merge: #1193 add back dependency lint
• a206dcd update various dependencies

See the full diff

Package name: npm

The new version differs by 250 commits.

• 30a9844 7.21.0
• 0b2cd9d update AUTHORS
• 06461ec docs: changelog for v7.21.0
• 771a1cb chore(tests): fix snapshots
• 71cdfd8 spdx-license-ids@3.0.10
• 94f92de make-fetch-happen@9.0.5
• 7ac621c smart-buffer@4.2.0
• 218caca is-core-module@2.6.0
• ff6626a fix(docs): update npm-publish access flag info
• b6f40b5 tar@6.1.10
• e9e5ee5 @ npmcli/arborist@2.8.2
• 991a3bd read-package-json@4.0.0
• f077724 init-package-json@2.0.4
• 68a19bb fix(error-message): look for er.path not er.file
• ff34d6c feat(cache): initial implementation of ls and rm
• 8183976 normalize-package-data@3.0.3
• df57f0d @ npmcli/run-script@1.8.6
• 487731c fix(logging): sanitize logged argv
• 7a58264 chore(ci): check that docs are up to date in ci
• 22f3bbb chore(docs): add more 'autogenerated' comments
• 4314490 fix(docs): revert auto-generated portion of docs
• 32e88c9 fix(did-you-mean): switch levenshtein libraries
• 59b9851 7.20.6
• 2591e67 update AUTHORS

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)