Upgrade packages to resolve security advisories (#912)

* Update minimatch to >3.0.5 to fix CVE-2022-3517

* Upgrade ses to 0.17.0 to fix GHSA-whpx-q3rq-w8jc advisory

packages/cli/package.json

@@ -54,8 +54,8 @@
     "init-package-json": "^1.10.3",
     "is-url": "^1.2.4",
     "mkdirp": "^1.0.4",
-    "serve-handler": "^6.1.1",
-    "ses": "^0.15.15",
+    "serve-handler": "^6.1.5",
+    "ses": "^0.17.0",
     "slash": "^3.0.0",
     "superstruct": "^0.16.7",
     "yargs": "^16.2.0",

packages/controllers/package.json

@@ -84,7 +84,7 @@
     "prettier": "^2.3.2",
     "prettier-plugin-packagejson": "^2.2.11",
     "rimraf": "^3.0.2",
-    "serve-handler": "^6.1.3",
+    "serve-handler": "^6.1.5",
     "ts-jest": "^29.0.0",
     "typescript": "^4.4.0"
   },

packages/execution-environments/package.json

@@ -38,7 +38,7 @@
     "@metamask/utils": "^3.3.0",
     "eth-rpc-errors": "^4.0.3",
     "pump": "^3.0.0",
-    "ses": "^0.15.15",
+    "ses": "^0.17.0",
     "stream-browserify": "^3.0.0",
     "superstruct": "^0.16.7"
   },

packages/utils/package.json

@@ -61,7 +61,7 @@
     "fast-deep-equal": "^3.1.3",
     "rfdc": "^1.3.0",
     "semver": "^7.3.7",
-    "ses": "^0.15.17",
+    "ses": "^0.17.0",
     "superstruct": "^0.16.7"
   },
   "devDependencies": {

yarn.lock

@@ -2788,7 +2788,7 @@ __metadata:
     prettier-plugin-packagejson: ^2.2.11
     pump: ^3.0.0
     rimraf: ^3.0.2
-    ses: ^0.15.15
+    ses: ^0.17.0
     stream-browserify: ^3.0.0
     superstruct: ^0.16.7
     ts-jest: ^29.0.0
@@ -3033,7 +3033,7 @@ __metadata:
     pump: ^3.0.0
     readable-web-to-node-stream: ^3.0.2
     rimraf: ^3.0.2
-    serve-handler: ^6.1.3
+    serve-handler: ^6.1.5
     tar-stream: ^2.2.0
     ts-jest: ^29.0.0
     typescript: ^4.4.0
@@ -3105,7 +3105,7 @@ __metadata:
     rfdc: ^1.3.0
     rimraf: ^3.0.2
     semver: ^7.3.7
-    ses: ^0.15.17
+    ses: ^0.17.0
     superstruct: ^0.16.7
     ts-jest: ^29.0.0
     typescript: ^4.4.0
@@ -3199,8 +3199,8 @@ __metadata:
     prettier: ^2.3.2
     prettier-plugin-packagejson: ^2.2.11
     rimraf: ^3.0.2
-    serve-handler: ^6.1.1
-    ses: ^0.15.15
+    serve-handler: ^6.1.5
+    ses: ^0.17.0
     slash: ^3.0.0
     superstruct: ^0.16.7
     ts-jest: ^29.0.0
@@ -12448,16 +12448,7 @@ __metadata:
   languageName: node
   linkType: hard
 
-"minimatch@npm:3.0.4":
-  version: 3.0.4
-  resolution: "minimatch@npm:3.0.4"
-  dependencies:
-    brace-expansion: ^1.1.7
-  checksum: 66ac295f8a7b59788000ea3749938b0970344c841750abd96694f80269b926ebcafad3deeb3f1da2522978b119e6ae3a5869b63b13a7859a456b3408bd18a078
-  languageName: node
-  linkType: hard
-
-"minimatch@npm:^3.0.4, minimatch@npm:^3.1.1":
+"minimatch@npm:3.1.2, minimatch@npm:^3.0.4, minimatch@npm:^3.1.1":
   version: 3.1.2
   resolution: "minimatch@npm:3.1.2"
   dependencies:
@@ -15047,26 +15038,26 @@ __metadata:
   languageName: node
   linkType: hard
 
-"serve-handler@npm:^6.1.1, serve-handler@npm:^6.1.3":
-  version: 6.1.3
-  resolution: "serve-handler@npm:6.1.3"
+"serve-handler@npm:^6.1.5":
+  version: 6.1.5
+  resolution: "serve-handler@npm:6.1.5"
   dependencies:
     bytes: 3.0.0
     content-disposition: 0.5.2
     fast-url-parser: 1.1.3
     mime-types: 2.1.18
-    minimatch: 3.0.4
+    minimatch: 3.1.2
     path-is-inside: 1.0.2
     path-to-regexp: 2.2.1
     range-parser: 1.2.0
-  checksum: 384c1bc10add07a554207f918acaa75af47fcfd8fb89e070faa3468ab45ec5bbc9f976e62d659b6b63404edcf5c54efb7e0a48f3f55946eec83b62b283b9837e
+  checksum: 7a98ca9cbf8692583b6cde4deb3941cff900fa38bf16adbfccccd8430209bab781e21d9a1f61c9c03e226f9f67689893bbce25941368f3ddaf985fc3858b49dc
   languageName: node
   linkType: hard
 
-"ses@npm:^0.15.15, ses@npm:^0.15.17":
-  version: 0.15.17
-  resolution: "ses@npm:0.15.17"
-  checksum: bb43d2db860c80459556cc88b9a7dde1db606c3de26ecf920eb0c219cc07d7e8e453153537b0aff82bc76bee93002faf99fbcf9049524a987d86e2389f31cc7d
+"ses@npm:^0.17.0":
+  version: 0.17.0
+  resolution: "ses@npm:0.17.0"
+  checksum: c4c668de819b5366da7a9797d4ab0ec9c3efe4904ea64453cad5a48b659c77b817d589584019f5f7ca42802f640dcc706241543c1df00282473320a77397b641
   languageName: node
   linkType: hard