[Snyk] Fix for 14 vulnerabilities

[Raj2020Github]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Cross-site Request Forgery (CSRF) SNYK-JS-AXIOS-6032459	Yes	Proof of Concept
	658/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-AXIOS-6124857	Yes	Proof of Concept
	534/1000 Why? Has a fix available, CVSS 6.4	Improper Authentication SNYK-JS-JSONWEBTOKEN-3180022	Yes	No Known Exploit
	539/1000 Why? Has a fix available, CVSS 6.5	Improper Restriction of Security Token Assignment SNYK-JS-JSONWEBTOKEN-3180024	Yes	No Known Exploit
	554/1000 Why? Has a fix available, CVSS 6.8	Use of a Broken or Risky Cryptographic Algorithm SNYK-JS-JSONWEBTOKEN-3180026	Yes	No Known Exploit
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Prototype Poisoning SNYK-JS-QS-3153490	No	Proof of Concept
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	Yes	Proof of Concept
	811/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 9.8	Arbitrary Code Execution SNYK-JS-VM2-2990237	Yes	Proof of Concept
	816/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 9.9	Sandbox Bypass SNYK-JS-VM2-3018201	Yes	Proof of Concept
	816/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 9.9	Sandbox Escape SNYK-JS-VM2-5415299	Yes	Proof of Concept
	811/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 9.8	Sandbox Escape SNYK-JS-VM2-5422057	Yes	Proof of Concept
	704/1000 Why? Has a fix available, CVSS 9.8	Improper Handling of Exceptional Conditions SNYK-JS-VM2-5426093	Yes	No Known Exploit
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') SNYK-JS-VM2-5537079	Yes	Proof of Concept
	811/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 9.8	Sandbox Bypass SNYK-JS-VM2-5537100	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: node-vault

The new version differs by 91 commits.

• e709b04 0.10.0
• 9b6a076 0.9.23-canary.4
• 28d5f9d 0.9.23-canary.3
• a4a935d chore: fixing version extraction for releases
• 1d6e65b 0.9.23-canary.2
• efba4b7 new: release will now create GH release
• 7938ef5 0.9.23-canary.1
• 7bcf82c 0.9.22-canary.0
• cc2b586 chore: fixing workflow permissions
• b1ac54f chore: fixing ssh access
• 468cc8b chore: updated job name
• ed4cc2b fix: Updated permissions for release job
• 50b912a chore: update job name for release
• 081c5e5 new: automation for package release to NPM
• 877f591 Replace request with postman-request
• 4c7b0c2 Merge pull request kubernetes-external-secrets/master/external-secrets.yml no longer exists in repo external-secrets/kubernetes-external-secrets#236 from nodevault/chore/better-codecov
• 8c5a08b chore: better codecov usage
• 098cb0a Merge pull request [Request]: Define vpc endpoints in isolated from internet environment external-secrets/kubernetes-external-secrets#232 from orgads/test-images
• 1c2b76a Merge branch 'master' into test-images
• 04cc618 Fixing a typo in action from chore(localstack): update localstack and localstack instructions external-secrets/kubernetes-external-secrets#233 (bug: SecretBinary not working properly external-secrets/kubernetes-external-secrets#235)
• ac25b18 Merge branch 'master' into chore/fix-action-type
• 8b5d985 Bump word-wrap from 1.2.3 to 1.2.4 (chore(vault): require vaultRole, vaultMountPoint, and key external-secrets/kubernetes-external-secrets#234)
• e3fb47e chore: typos in readme, permissions in actions and actions upgrade (chore(localstack): update localstack and localstack instructions external-secrets/kubernetes-external-secrets#233)
• 1605c2a Merge branch 'master' into test-images

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Cross-site Request Forgery (CSRF)
🦉 Regular Expression Denial of Service (ReDoS)
🦉 Improper Authentication
🦉 More lessons are available in Snyk Learn

[github-actions]

This pr is stale because it has been open 90 days with no activity. Remove stale label or comment or this will be closed in 30 days.