[Snyk] Fix for 13 vulnerabilities

[enterstudio]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	589/1000 Why? Has a fix available, CVSS 7.5	Denial of Service (DoS) SNYK-JS-AMMO-548920	Yes	No Known Exploit
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	Yes	Proof of Concept
	506/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 3.7	Prototype Pollution SNYK-JS-MINIMIST-2429795	Yes	Proof of Concept
	601/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.6	Prototype Pollution SNYK-JS-MINIMIST-559764	Yes	Proof of Concept
	646/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.5	Server-side Request Forgery (SSRF) SNYK-JS-REQUEST-3361831	Yes	Proof of Concept
	624/1000 Why? Has a fix available, CVSS 8.2	Arbitrary File Overwrite SNYK-JS-TAR-1536528	Yes	No Known Exploit
	624/1000 Why? Has a fix available, CVSS 8.2	Arbitrary File Overwrite SNYK-JS-TAR-1536531	Yes	No Known Exploit
	410/1000 Why? Has a fix available, CVSS 3.7	Regular Expression Denial of Service (ReDoS) SNYK-JS-TAR-1536758	Yes	No Known Exploit
	639/1000 Why? Has a fix available, CVSS 8.5	Arbitrary File Write SNYK-JS-TAR-1579147	Yes	No Known Exploit
	639/1000 Why? Has a fix available, CVSS 8.5	Arbitrary File Write SNYK-JS-TAR-1579152	Yes	No Known Exploit
	639/1000 Why? Has a fix available, CVSS 8.5	Arbitrary File Write SNYK-JS-TAR-1579155	Yes	No Known Exploit
	646/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.5	Prototype Pollution SNYK-JS-TOUGHCOOKIE-5672873	Yes	Proof of Concept
	636/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.3	Prototype Pollution npm:hoek:20180212	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: hapi

The new version differs by 236 commits.

• c4593b6 deps. Closes #2897. Closes #2898. Closes #2899. Closes #2900. Closes #2901. Closes #2902. Closes #2903. Closes #2904. Closes #2905. Closes #2906. Closes #2907. Closes #2908. Closes #2909. Closes #2910. Closes #2911. Closes #2912. Closes #2913. Closes #2914. Closes #2915. Closes #2916. Closes #2917. Closes #2918. Closes #2919. Closes #2920. Closes #2921. Closes #2922. Closes #2923
• ca4320e Merge pull request #2891 from nlindley/payload-test-typo
• 02b6ac7 Fix typo in payload test
• e5da51c Merge branch 'master' of github.com:hapijs/hapi
• 5a0dc49 Remove compount assignments
• 375fe30 Merge pull request #2888 from cjihrig/master
• 05f6a26 style fixes
• 635089b Merge pull request #2887 from gergoerdosi/node-5
• 86102c7 Test on node v5
• fc503f8 lab 7
• fdf7ed3 Merge pull request #2885 from gergoerdosi/subtext
• 0cb9143 Update hapijs/subtext to 2.0.2 from 2.0.1
• d3a6cf8 typo
• 47373dd Remove bluebird. Closes #2881
• 98d3404 Skip most lifecycle on not found and bad path. Closes #2867
• 7041325 CORS error cases. Closes #2868
• 1696838 Replace function with arrow. Closes #2877
• 2aedf38 Merge branch 'master' of github.com:hapijs/hapi
• ca3ee7e Additional => conversions. For #2877
• 1ef09e8 Merge pull request #2876 from sfabriece/patch-1
• a7b3ad7 Initial transition to arrow functions. For #2877
• 7ec0ae3 Update API.md
• 32cf03c for style change. Closes #2875
• 38f90bb Replace var with let. Closes #2874

See the full diff

Package name: lout

The new version differs by 13 commits.

• 64fdc5a 7.1.0
• 0bb0dbe Remove +/-Infinity from numbers (fixes Authorization error is wrong mozilla/publish.webmaker.org#120)
• fb16070 Mention vision and inert in readme (fixes Make publish.wm.o return file data in a non-json format mozilla/publish.webmaker.org#121)
• 32c3225 Fix post handlebars 4 upgrade
• e489c74 Try to fix layout of types
• 7a0597d Merge pull request Enforce a file size limit mozilla/publish.webmaker.org#118 from lloydbenson/master
• 56d0d04 fix other examples and cleanup older examples can find in npm package
• 25c2645 Merge pull request Allow GET files routes to return a representation without file data mozilla/publish.webmaker.org#117 from lloydbenson/master
• ed497b3 update readme example to be 9.x compliant
• 0d14e2d 7.0.0
• a81f6ab Fixes for hapi 9
• b843c5a Prevent endpoint leading/trailing errors
• e523cd0 Remove the npm publish

See the full diff

Package name: sqlite3

The new version differs by 250 commits.

• 573784b v5.0.3
• e5a24fd Deleted `examples/` folder
• b05f459 Added note about GitHub Releases to CHANGELOG.md
• 33d0656 Modernised Usage example in README
• 9d05c55 Fixed up more README nits
• 08d6319 Fixed link to API docs
• 0e2235a Altered wording in README
• 76b6c56 Altered README header
• e3df365 Updated README
• 426930f Enabled CI to run when pushing tags
• a21d41f Fixed uploading binaries to commit artifacts
• bc978c7 Fixed CI step wording
• 7f744a1 Added prebuilt binaries via GitHub Releases
• b4b3c3a Deleted `scripts/` directory
• 71bbdea Pinned dev dependencies (#1558)
• a597383 Updated badges in README
• 0eb4a0f Deleted Travis and Appveyor configs
• b58d341 Downgraded `mocha` and `eslint`
• f39b10d Added missing Node versions to CI
• 8db96d4 Replaced Python extraction script with JS (#1570)
• 11c988c Fixed Windows build architecture in CI
• 8e63848 Updated Windows CI runner to `windows-latest`
• d9e7d8b Fixed building on MacOS Monterey 12.3
• 859b95b Updated `node-gyp` to v8.x

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Denial of Service (DoS)
🦉 Prototype Pollution
🦉 Server-side Request Forgery (SSRF)
🦉 More lessons are available in Snyk Learn