[Snyk] Fix for 3 vulnerabilities

[NivLipetz]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	661/1000 Why? Recently disclosed, Has a fix available, CVSS 7.5	Prototype Pollution SNYK-JS-AXIOS-6144788	Yes	No Known Exploit
	631/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.2	Missing Release of Resource after Effective Lifetime SNYK-JS-INFLIGHT-6095116	No	Proof of Concept
	479/1000 Why? Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-3050818	No	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: sqlite3

The new version differs by 126 commits.

• ba4ba07 v5.1.7
• d04c1fb Removed Node version from matrix title
• 03d6e75 v5.1.7-rc.0
• 8398daa Fixed uploading assets from Docker
• 8b86e41 Fixed uploading release assets on Windows
• 83c8c0a Configured releases to be created as prereleases
• f792f69 Update dependency node-addon-api to v7
• 4ef11bf Removed extraneous parameter to event emit function
• e99160a Inlined `init()` functions into class header files
• 3372130 Improved `RowToJS` performance by removing `Napi::String::New` instantiation
• 77b327c Increased number of rows inserted into benchmark database
• 603e468 Fixed minor linting warning
• 8bda876 Refactored Database to use macros for method definitions
• 5809f62 Fixed uploading prebuilt binaries from Docker
• aabd297 Update actions/setup-node action to v4
• c775b81 Extracted common Node-API queuing code into macro
• 2595304 Updated list of supported targets
• 605c7f9 Replaced `@ mapbox/node-pre-gyp` in favor of `prebuild` + `prebuild-install`
• a2cee71 Update dependency mocha to v10
• 7674271 Update dependency eslint to v8
• 83e282d Update actions/checkout digest to b4ffde6
• 8482aaf Update docker/setup-buildx-action action to v3
• c74f267 Update docker/setup-qemu-action action to v3
• 9e8b2ee Reworked CI versions

See the full diff

Package name: tedious

The new version differs by 250 commits.

• 6b8bd41 Merge pull request #1335 from tediousjs/feature/remove-azure-ms-rest-nodeauth-1238
• ed81a16 chore(lock): update lock to remove azure auth deps
• 406ad78 chore: remove adal-node dependency
• 46f330f chore: remove @ azure/ms-rest-nodeauth dependency
• 8eca444 feat: convert @ azure/ms-rest-nodeauth to identity
• 62fd077 Merge pull request #1334 from tediousjs/arthur/specify-azure-tenant-ci
• b49464e ci: specify azure tenant id
• 7b4be33 Merge pull request #1333 from tediousjs/arthur/deprecate-azure-options
• 596e575 feat: deprecate azure authentication options that will be removed
• 78728b8 Merge pull request #1332 from tediousjs/arthur/fix-benchmarks
• e4242ad chore: fix `RPCRequest` benchmarks
• b100407 Merge pull request #1329 from tediousjs/arthur/update-dependencies
• acf9966 chore: update all `commitlint` packages
• 6aadb41 chore: update to `@ azure/identity@1.5.2`
• ff0d009 chore: update to `@ azure/keyvault-keys@4.3.0`
• 401b3a6 chore: update to `@ typescript-eslint/parser@4.30.0` and `@ typescript-eslint/eslint-plugin@4.30.0`
• dce6a18 chore: update to `eslint@7.32.0`
• 7ae2457 chore: update to `@ types/chai@4.2.21`
• 180e102 chore: update to `node-abort-controller@3.0.0`
• 6dc3615 chore: update to `sinon@11.1.2`
• 7cc368e chore: update to `semantic-release@17.4.7`
• bb1f9d4 chore: upgrade to `@ types/mocha@9.0.0`
• e1be7ef chore: upgrade to `mocha@9.1.1`
• 96fc3a5 chore: upgrade to `typedoc@0.21.9`

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Prototype Pollution
🦉 Regular Expression Denial of Service (ReDoS)