[Snyk] Security upgrade node-fetch from 2.6.7 to 3.1.1

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • packages/app-builder-backend/package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Issue	Breaking Change	Exploit Maturity
	Information Exposure SNYK-JS-NODEFETCH-2342118	Yes	No Known Exploit

Commit messages

Package name: node-fetch

The new version differs by 187 commits.

• 36e47e8 3.1.1 release (Add embed operation to offers APIs to allow conveyancing information to be included #1451)
• 5304f3f Don't change relative location header on manual redirect (Provide web components demonstration database #1105)
• f5d3cf5 fix(Headers): don't forward secure headers to 3th party (fix: #1381 hotfix on admin routing #1449)
• f2c3d56 Create SECURITY.md (fix: #1424 Admin Portal landing page issue #1445)
• 4ae3538 core: Warn when using data (Developer Portal Browser Testing #1421)
• 41f53b9 fix: use more node: protocol imports (Populate the example values used by the conveyancing service #1428)
• f674875 ci: fix main branch (Add links to conveyancing read model #1429)
• 1493d04 core: Don't use global buffer (Client Portal Browser Testing #1422)
• eb33090 Chore: Fix logical operator priority (regression) to disallow GET/HEAD with non-empty body (The Web Components Config API should store config by appId #1369)
• 7ba5bc9 update readme for TS @ type/node-fetch (fix: #1391 Fix warning error which display in marketplace #1405)
• 6956bf8 core: Don't use buffer to make a blob (fix: #1390 sourcemaps not loaded in dev and prod #1402)
• 6e4c1e4 fix(Redirect): Better handle wrong redirect header in a response (chore: remove offline plugin #1387)
• 2d5399e fix: handle errors from the request body stream (New users see endless loading spinners on the Cost Explorer page #1392)
• 0284826 fix(http.request): Cast URL to string before sending it to NodeJS core (Provide API to allow a member to be invited to a developer organisation #1378)
• 3f0e0c2 docs: Fix typo around sending a file (fix: hot fix for private route #1381)
• 30c3cfe update fetch-blob (Filtering mobile and UI issues on 'Browse Apps'  #1371)
• 109bd21 release minor change (3.1.0) (fix: #1206 install uninstall button #1364)
• ff71348 docs: Update code examples (fix: #1033 update config web component button #1365)
• 1068c8a template: Make PR template more task oriented (Business logic for Appointment Planner API #1224)
• 3944f24 feat(Body): Added support for `BodyMixin.formData()` and constructing bodies with FormData (refactor: #1174 Refactor register page using new react-redux hooks #1314)
• 37ac459 docs: Improve clarity of "Loading and configuring" (fix: #1274 adds plugin to ensure css lib can be parsed and fix dev. Removed… #1323)
• a3a5b63 chore: Correct stuff in README.md (refactor: #1327 refactor admin apps page #1361)
• ff7e950 Add typing for Response.redirect(url, status) (feat: #1159 Updates required to the Webhooks page in the Developers Portal #1169)
• 2d80b0b Add support for Referrer and Referrer Policy (chore: temporary disable e2e test #1057)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic