[Snyk] Security upgrade nodeshift from 8.7.0 to 11.0.0

[lholmquist]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	718/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 6.5	Uncontrolled Resource Consumption ('Resource Exhaustion') SNYK-JS-TAR-6476909	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: nodeshift

The new version differs by 39 commits.

• 207f4d9 chore(main): release 11.0.0 (#689)
• 4faebe8 fix: upgrade nock from 13.3.2 to 13.3.3 (#714)
• 4ed51b7 fix: upgrade eslint from 8.47.0 to 8.48.0 (#717)
• b294446 fix: upgrade tar from 6.1.15 to 6.2.0 (#718)
• 7049c03 fix: upgrade tape from 5.6.6 to 5.7.0 (#720)
• 197a372 feat!: remove node 16 (#722)
• 7640be8 fix: update minimatch to the latest. (#713)
• a7234fb chore: update chalk to latest 4.x version. Version 5 starts using ESM only, so we are stuck on this for now, but it's not a problem because v4 is stable (#712)
• b5861ee fix: upgrade eslint from 8.43.0 to 8.44.0 (#710)
• 994123f fix: upgrade nock from 13.3.1 to 13.3.2 (#711)
• 77770d9 fix: upgrade tape from 5.5.3 to 5.6.5 (#709)
• 1e1a8ed fix: upgrade eslint from 8.33.0 to 8.43.0 (#701)
• fd31db0 feat: upgrade openshift-rest-client from 7.0.0 to 8.0.1 (#708)
• 307a196 fix: upgrade sinon from 15.1.0 to 15.1.2 (#700)
• 96abce7 fix: upgrade eslint-config-standard from 17.0.0 to 17.1.0 (#698)
• 0f25b5a feat: upgrade typescript from 4.9.4 to 5.1.3 (#690)
• 229e381 fix: upgrade sinon from 15.0.1 to 15.1.0 (#695)
• 889692f fix: upgrade tar from 6.1.11 to 6.1.15 (#694)
• 6e84cd5 fix: upgrade nock from 13.3.0 to 13.3.1 (#699)
• 258e31c fix: package.json & package-lock.json to reduce vulnerabilities (#688)
• ad5a990 chore(main): release 10.0.0 (#676)
• 8ccc1fa feat!: remove Node 14 (#675)
• 8d5f1d3 chore(main): release 9.0.0 (#673)
• 262e715 chore: add publish automation (#674)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Uncontrolled Resource Consumption ('Resource Exhaustion')

[coveralls]

coverage: 85.625%. remained the same
when pulling 861f42f on snyk-fix-934eaaccf3d81f7439ccfd3fb453c8ba
into c8b1387 on main.