[Snyk] Fix for 1 vulnerabilities

[dippyhippy]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	551/1000 Why? Recently disclosed, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-3050818	No	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: noflo

The new version differs by 250 commits.

• a1187c6 Bump
• d1c13f2 Update Flowhub docs link
• 49cfb8b Update fbp-protocol link
• b25001e Update MsgFlo link
• 9757b8d Merge pull request #534 from noflo/update_copyrights
• f84ca06 Reassign copyrights
• a790ba4 Make 'grunt test' run the build task instead of duplicating
• 593a39d Bump
• 05d38ad Document WirePattern Process API changes, refs #526
• 452c57f Merge pull request #526 from noflo/process_wirepattern
• 6ceab6f Merge pull request #532 from noflo/fix_null_undefined
• efaba77 Fix ip.data turned from null to undefined
• 76d10c6 Provide postpone/resume functions that throw a more user-friendly error
• 4db7e7b Plug deprecation warnings back in
• 9d15d3c Collation support for WirePattern group and field options in Process API
• 5d322e2 Initial support for collating inputs by field
• 4d4413e More consistent wrapper naming
• 589e445 Make it possible to force WirePattern into legacy mode, either via env vars or with a config key
• 2553bcd Expose component instance
• 194ae10 Move more component initialization to proper befores
• da8a8bf Move more component initialization to proper befores
• 17ce316 With Process API the garbage collection tests don't make sense
• 36ef4b3 Better debug message for WP legacy fallback
• b3a21a4 Prevent multiple dones

See the full diff

Package name: noflo-flow

The new version differs by 26 commits.

• 95cd70f Bump
• cb5dcc3 Merge pull request #84 from noflo/update_dependencies
• 492b110 These graphs are now gone
• 302192a Use ComponentLoader to instantiate
• 01a4700 Remove unmaintained noflo-cache dep
• 80c63d8 Add webpack loaders
• 4118ee9 Update noflo-manifest
• cd9df21 Update grunt-contrib-coffee
• ed5ee00 Update grunt-contrib-watch
• 9bcbd11 Update grunt-coffeelint
• 44b6c6f Update grunt-contrib-uglify
• 8538254 Merge remote-tracking branch 'origin/greenkeeper-grunt-noflo-browser-1.0.1' into update_dependencies
• 38b493b Merge remote-tracking branch 'origin/greenkeeper-grunt-mocha-test-0.13.2' into update_dependencies
• 5c162ce Update grunt-mocha-phantomjs
• b9a6b90 Merge remote-tracking branch 'origin/greenkeeper-mocha-3.2.0' into update_dependencies
• 9308748 Update grunt
• d9fb5bb Relax NoFlo version dependency
• 5893423 chore(package): update mocha to version 3.2.0
• 6e3a5f9 chore(package): update grunt-mocha-test to version 0.13.2
• 2a1b7b4 chore(package): update grunt-noflo-browser to version 1.0.1
• a766bf5 chore(package): update grunt-mocha-phantomjs to version 4.0.0
• 2cf5529 chore(package): update grunt-contrib-uglify to version 2.0.0
• 0e13402 chore(package): update grunt-coffeelint to version 0.0.16
• 8e3fa11 chore(package): update grunt to version 1.0.1

See the full diff

Package name: noflo-nodejs

The new version differs by 155 commits.

• 0862625 Update deploy token
• 68acfa5 Bump
• bb0febb Merge pull request #108 from noflo/greenkeeper/noflo-0.8.0
• a53b838 Update noflo-runtime-websocket
• daba6d3 fix(package): update noflo-runtime-websocket to version 0.8.0
• bc980e8 Update fbp-protocol
• 466f815 Update noflo-runtime-base
• 28958a2 fix(package): update noflo-runtime-base to version 0.8.1
• 0b3d74c Update noflo-core
• a267845 Merge remote-tracking branch 'origin/greenkeeper/noflo-runtime-base-0.8.0' into greenkeeper/noflo-0.8.0
• b07d13f fix(package): update noflo-runtime-base to version 0.8.0
• b94f99f fix(package): update noflo to version 0.8.0
• 9959355 Merge pull request #104 from noflo/greenkeeper-flowhub-registry-0.1.0
• 7dc1480 chore(package): update flowhub-registry to version 0.1.0
• 2aed272 Merge pull request #84 from noflo/greenkeeper-password-maker-1.1.3
• 0dea76d chore(package): update password-maker to version 1.1.3
• 7a67f5d Merge pull request #103 from noflo/update_dependencies
• 07e76bf Update yargs
• 5856f71 Merge remote-tracking branch 'origin/greenkeeper-coffee-script-1.12.1' into update_dependencies
• 7d579fa Merge remote-tracking branch 'origin/greenkeeper-uuid-3.0.1' into update_dependencies
• 387380b Use fbp-protocol to increase test coverage
• dd26982 Start preparing fbp-protocol tests
• 39ffa21 chore(package): update yargs to version 6.6.0
• 3b76503 chore(package): update coffee-script to version 1.12.1

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)