[Snyk] Upgrade yargs from 12.0.5 to 17.5.0 #1

snyk-bot · 2022-06-04T17:06:31Z

Snyk has created this PR to upgrade yargs from 12.0.5 to 17.5.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

Warning: This is a major version upgrade, and may be a breaking change.

The recommended version is 78 versions ahead of your current version.
The recommended version was released 24 days ago, on 2022-05-11.

The recommended version fixes:

Issue	PriorityScore (*)	Exploit Maturity
Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-YARGSPARSER-560381	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: yargs

17.5.0 - 2022-05-11
17.5.0 (2022-05-11)

Features
- add browser.d.ts and check for existence of Error.captureStackTrace() (#2144) (6192990)
Bug Fixes
- completion: support for default flags (db35423)
- import yargs/yargs in esm projects (#2151) (95aed1c)
17.4.1 - 2022-04-09
17.4.1 (2022-04-09)

Bug Fixes
- coerce pollutes argv (#2161) (2d1136d)
- completion: don't show positional args choices with option choices (#2148) (b58b5bc)
- hide hidden options from completion (#2143) (e086dfa), closes #2142
- show message when showHelpOnFail is chained globally (#2154) (ad9fcac)
17.4.0 - 2022-03-19
17.4.0 (2022-03-19)

Features
- completion: choices will now work for all possible aliases of an option and not just the default long option (30edd50)
- completion: positional arguments completion (#2090) (00e4ebb)
Bug Fixes
- completion: changed the check for option arguments to match options that begin with '-', instead of '--', to include short options (30edd50)
- completion: fix for completions that contain non-leading hyphens (30edd50)
- failed command usage string is missing arg descriptions and optional args (#2105) (d6e342d)
- wrap unknown args in quotes (#2092) (6a29778)
17.3.1 - 2021-12-23
17.3.1 (2021-12-23)

Bug Fixes
- translations: correct Korean translation (#2095) (c7c2b9e)
17.3.0 - 2021-11-30
17.3.0 (2021-11-30)

Features
- fallback to default bash completion (74c0ba5)
Bug Fixes
- avoid legacy accessors (#2013) (adb0d11)
- deps: update dependency yargs-parser to v21 (#2063) (76c1951)
- don't fail if "fileURLToPath(import.meta.url)" throws (3a44796)
- re-add options to check callback (#2079) (e75319d)
17.2.1 - 2021-09-25
17.2.0 - 2021-09-23
17.1.1 - 2021-08-13
17.1.1-candidate.0 - 2021-08-13
17.1.0 - 2021-08-04
17.1.0-candidate.0 - 2021-07-15
17.0.2-candidate.1 - 2021-07-15
17.0.2-candidate - 2021-07-10
17.0.1 - 2021-05-03
17.0.0 - 2021-05-02
17.0.0-candidate.13 - 2021-04-26
17.0.0-candidate.12 - 2021-04-12
17.0.0-candidate.11 - 2021-04-11
17.0.0-candidate.10 - 2021-04-04
17.0.0-candidate.9 - 2021-04-04
17.0.0-candidate.8 - 2021-03-26
17.0.0-candidate.7 - 2021-03-14
17.0.0-candidate.6 - 2021-03-11
17.0.0-candidate.5 - 2021-03-10
17.0.0-candidate.4 - 2021-03-08
17.0.0-candidate.3 - 2021-02-22
17.0.0-candidate.2 - 2021-02-16
17.0.0-candidate.1 - 2021-02-15
17.0.0-candidate.0 - 2021-01-09
16.2.0 - 2020-12-05
16.1.1 - 2020-11-15
16.1.0 - 2020-10-16
16.0.4-candidate.0 - 2020-09-21
16.0.3 - 2020-09-10
16.0.2 - 2020-09-09
16.0.1 - 2020-09-09
16.0.0 - 2020-09-09
16.0.0-beta.3 - 2020-09-08
16.0.0-beta.2 - 2020-09-08
16.0.0-beta.1 - 2020-08-27
16.0.0-beta.0 - 2020-08-22
16.0.0-alpha.3 - 2020-08-19
16.0.0-alpha.2 - 2020-08-17
16.0.0-alpha.1 - 2020-08-17
16.0.0-alpha.0 - 2020-08-17
15.5.0-candidate.0 - 2021-02-22
15.4.1 - 2020-07-10
15.4.0 - 2020-07-02
15.4.0-beta.1 - 2020-07-01
15.4.0-beta.0 - 2020-05-15
15.3.2-beta.0 - 2020-04-17
15.3.1 - 2020-03-16
15.3.1-beta.0 - 2020-03-12
15.3.0 - 2020-03-08
15.3.0-beta.1 - 2020-03-08
15.3.0-beta.0 - 2020-03-02
15.2.0 - 2020-03-01
15.2.0-beta.2 - 2020-03-01
15.2.0-beta.1 - 2020-02-29
15.2.0-beta.0 - 2020-02-24
15.1.0 - 2020-01-02
15.0.2 - 2019-11-19
15.0.1 - 2019-11-16
15.0.0 - 2019-11-10
14.2.3 - 2020-03-13
14.2.2 - 2019-11-19
14.2.1 - 2019-10-30
14.2.0 - 2019-10-07
14.1.0 - 2019-09-06
14.0.0 - 2019-07-30
13.3.2 - 2020-03-13
13.3.0 - 2019-06-10
13.2.4 - 2019-05-13
13.2.2 - 2019-03-06
13.2.1 - 2019-02-18
13.2.0 - 2019-02-15
13.1.0 - 2019-02-12
13.0.0-candidate.0 - 2019-02-02
12.0.5 - 2018-11-19