[Snyk] Security upgrade graphql from 16.6.0 to 16.8.1

[ksibisamir]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

⚠️ Warning

Failed to update the package-lock.json, please update manually before merging.

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	658/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 5.3	Denial of Service (DoS) SNYK-JS-GRAPHQL-5905181	No	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: graphql

The new version differs by 10 commits.

• 8a95335 16.8.1
• 8f4c64e OverlappingFieldsCanBeMergedRule: Fix performance degradation (#3967)
• e4f759d 16.8.0
• bec1b49 Support fourfold nested lists (#3950)
• bf6a9f0 16.7.1
• a08aaee instanceOf: workaround bundler issue with `process.env` (#3923)
• 1519fda 16.7.0
• 84bb146 check "globalThis.process" before accessing it (#3887)
• 076972e Fix/invalid error propagation custom scalars (backport for 16.x.x) (#3838)
• 4a82557 Fix crash in node when mixing sync/async resolvers (backport of #3706) (#3707)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Denial of Service (DoS)