[Snyk] Fix for 2 vulnerabilities

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	718/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 6.5	Server-side Request Forgery (SSRF) SNYK-JS-PARSEURL-3023021	Yes	Proof of Concept
	643/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 5	Improper Input Validation SNYK-JS-PARSEURL-3024398	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: @semantic-release/release-notes-generator

The new version differs by 11 commits.

• 7243769 fix: remove dependency to `git-url-parse`
• 5c3c9b5 docs: correct npm install command
• b33cb95 fix(package): update into-stream to version 4.0.0
• 8c0af24 docs: harmonize docs with other plugins
• a3d4c95 feat: export as an object with `generateNotes` step
• a207dce chore(package): update commitizen to version 3.0.0
• af5860f fix(package): update debug to version 4.0.0
• 6f3807b chore(package): update xo to version 0.23.0
• 1f90e46 fix(package): update get-stream to version 4.0.0
• a859529 chore(package): update xo to version 0.22.0
• 88b7644 feat: use `cwd` and `env` options passed by core

See the full diff

Package name: git-url-parse

The new version differs by 83 commits.

• 129677c Updated docs
• 26cc5fe Fix shorthand urls
• 4e3b1cc Merge branch 'custom-ssh-user-tests' of github.com:privatenumber/git-url-parse into new-version
• 32ed275 ⬆️ 13.0.0 🎉
• 7cce252 refactor: remove enterpriseSsh
• c674528 test: failing test for custom SSH user
• f4ea05e wip
• 6c0ca07 Updated docs
• 9746972 ⬆️ 12.0.0 🎉
• 60011fb Update dependencies
• 246c911 Updated docs
• f3093dc Merge branch 'bugfix/parse-bitbucket-server-subpaths' of https://github.com/goober/git-url-parse into new-version
• 263143f ⬆️ 11.6.0 🎉
• 37f5c50 Fix parsing Bitbucket Server urls with files located in subfolders
• f56cbc1 Updated docs
• be1efb4 Merge branch 'feature/support-commits-url-for-bitbucket-server' of https://github.com/goober/git-url-parse into new-version
• 1cb827f ⬆️ 11.5.0 🎉
• 8e9bc4b Merge branch 'new-version' of github.com:IonicaBizau/git-url-parse into new-version
• 4b61233 ⬆️ 11.5.0 🎉
• 0abc5c1 Add support for Bitbucket Server repository root and commit endpoints
• 49f5342 ⬆️ 11.4.5 🎉
• 71c7298 Updated docs
• c44df32 Merge branch 'azure_branch' of https://github.com/n2ygk/git-url-parse into new-version
• 2003390 ⬆️ 11.4.4 🎉

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Server-side Request Forgery (SSRF)