[Snyk] Fix for 1 vulnerabilities

[lirantal]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	461/1000 Why? Recently disclosed, Has a fix available, CVSS 3.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-DEBUG-3227433	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: yeoman-generator

The new version differs by 131 commits.

• 9e4ccf5 2.0.0
• a29e5d9 Bump dependencies
• 96da393 Bump package-lock.json
• 4b1b841 Replace gulp with raw Mocha
• 6effbfe Use raw nsp
• 183b3a8 Get rid of before/after (toward jest migration)
• 68d59c1 Add package-lock.json
• f8e46b0 Don't die on diffing file deletions (again) (#1028)
• edc2bf2 [comments] Change wrong param name in description (#1018)
• 364606e Switch to `make-dir`
• eaf1ade New: option shorthand on installDependencies method (#1015)
• e296e52 Bump XO and minor style tweaks
• 9da7391 Bump dependencies
• b010701 More ES2015ifing
• cfd2a8e Refactor install methods to handle promises - ref #1006
• 1be88e6 Remove callback API from Genrator#github.username() in favor of Promise one - ref #1006
• 00912ce Remove class-extend (isn't necessary with ES6), clean jsdoc
• 2cab46e Get rid of some dependencies
• 6553965 More ES2015ification
• d535bac Initial ES2015ification
• 80863b0 1.1.1
• af3048f Fix issue with API documentation deploy script
• 74cb46f Document legacy Generator.extend method properly - rel #996
• 6d267f0 Use XO

See the full diff

Package name: yo

The new version differs by 49 commits.

• ab77908 2.0.0
• 11af8d6 Bump yeoman-environment to 2.0
• a75d174 Better error handling when 'generator-' prefix is specified (#520)
• 6e1a870 Bump dependencies
• ecd7ffa ES2015ify
• 018cd95 Bump dependencies
• b41958c Bump `async`. (#506)
• de5ca0b Bump `lodash`. (#505)
• 9631848 Use `string.prototype.repeat` over `repeating`. (#504)
• 71ae911 Bump `inquirer`. (#503)
• 5149db0 Bump `read-pkg-up`. (#502)
• ca4b84c Bump `got`. (#501)
• 50683a0 Update required node version
• 1992fc1 Update `fullname` package (#498)
• e5e4bf0 Drop v.12 from Travis (#496)
• 6de9fbb Fix pull request template (#497)
• e4a635c Add issue and pull request template (#492)
• da8a3cf Drop `pinkie-promise`. (#488)
• 1d22d1c Remove Node 0.10 from travis config (#489)
• 846fd3c Bump inquirer (#429)
• 3be725b 1.8.5
• a1b0532 Cancel npm install if no generators are selected to update (#470) (#470)
• 8a54b6e 1.8.4
• 82a37a4 Fix main generator detection pattern (#447)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)