[Snyk] Fix for 1 vulnerabilities

[scottie]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	584/1000 Why? Has a fix available, CVSS 7.4	Regular Expression Denial of Service (ReDoS) SNYK-JS-HAWK-2808852	No	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: request

The new version differs by 28 commits.

• 02fc5b1 Update changelog
• de1ed5a 2.87.0
• a6741d4 Replace hawk dependency with a local implemenation (#2943)
• a7f0a36 2.86.1
• 8f2fd4d Update changelog
• 386c7d8 2.86.0
• 76a6e5b Merge pull request #2885 from ChALkeR/patch-1
• db76838 Merge branch 'patch-1' of github.com:ChALkeR/request
• fb7aeb3 Merge pull request #2942 from simov/fix-tests
• e47ce95 Add Node v10 build target explicitly
• 0c5db42 Skip status code 105 on Node > v10
• d555bd7 Generate server certificates for Node > v10
• 81f8cb5 Remove redundant code
• db17497 Use Buffer.from and Buffer.alloc in tests
• 0d29635 Merge pull request #2923 from gareth-robinson/cifixes
• 3745cec Correction for Windows OS identification
• 219a298 Alterations for failing CI tests
• bbb3a0b 2.85.1
• 21ef363 Update changelog
• 5dad86e 2.85.0
• 5ba8eb4 Revert "Update hawk to 7.0.7 (#2880)"
• b191514 2.84.1
• d77c839 Update changelog
• 4b46a13 2.84.0

See the full diff

Package name: selenium-standalone

The new version differs by 26 commits.

• 6662e13 6.15.0
• 7368630 Merge pull request #363 from serbanghita/update-geckodriver
• 9a9a00d Updated to the latest Geckodriver that works with Firefox 66.0.1
• c2a207a Merge pull request #322 from vvo/renovate/tar-stream-1.x
• 4ff7866 Update dependency tar-stream to v1.6.1
• 60fe206 Merge pull request #337 from vvo/renovate/mocha-5.x
• 5791ae2 Update dependency mocha to v5
• 13e0687 Merge pull request #321 from vvo/renovate/request-2.x
• 9396237 Update dependency request to v2.87.0
• 73ac9f5 6.14.1
• 5196818 Merge pull request #359 from edi9999/patch-2
• 38eccc4 Update requests dependency
• cfc0e19 6.14.0
• 71d83d2 Merge pull request #354 from lfarnell/master
• d571285 Bumping verisons
• fc1b57d 6.13.0
• 0e5e206 Merge pull request #347 from WillBrock/chromedriver-236
• 83bc90f Update chromedriver to 2.36 and update tests for linux 32
• 93efc2f Merge pull request #346 from vvo/renovate/doctoc-1.x
• edad0bf chore(deps): update dependency doctoc to v1.3.1
• de661f5 Merge pull request #345 from paladox/patch-4
• bfe6b69 Update selenium to 3.8.1
• 2c06b87 Merge pull request #338 from vvo/renovate/cross-spawn-6.x
• 975a544 fix(deps): update dependency cross-spawn to ^6.0.0

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.