[Snyk] Upgrade nock from 13.0.4 to 13.1.1

[snyk-bot]

Snyk has created this PR to upgrade nock from 13.0.4 to 13.1.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 9 versions ahead of your current version.
• The recommended version was released 2 months ago, on 2021-07-04.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Prototype Pollution SNYK-JS-Y18N-1021887	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Prototype Pollution SNYK-JS-Y18N-1021887	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-UAPARSERJS-610226	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-UAPARSERJS-1023599	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Arbitrary File Overwrite SNYK-JS-TAR-1536531	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
	Arbitrary File Overwrite SNYK-JS-TAR-1536528	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
	Arbitrary File Overwrite SNYK-JS-TAR-1536531	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
	Arbitrary File Overwrite SNYK-JS-TAR-1536528	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SSRI-1246392	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SSRI-1246392	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SSRI-1085630	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
	Prototype Pollution SNYK-JS-OBJECTPATH-1017036	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Prototype Pollution SNYK-JS-MERGEDEEP-1070277	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
	Command Injection SNYK-JS-LODASH-1040724	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Prototype Pollution SNYK-JS-INI-1048974	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Prototype Pollution SNYK-JS-AWSSDK-1059424	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Prototype Pollution SNYK-JS-AJV-584908	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-WS-1296835	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-WS-1296835	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-UAPARSERJS-1072471	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVERREGEX-1047770	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-POSTCSS-1255640	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-POSTCSS-1090595	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-POSTCSS-1255640	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-POSTCSS-1090595	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHPARSE-1077067	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHPARSE-1077067	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Prototype Pollution SNYK-JS-OBJECTPATH-1569453	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
	Denial of Service SNYK-JS-NODEFETCH-674311	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
	Prototype Pollution SNYK-JS-MINIMIST-559764	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-HOSTEDGITINFO-1088355	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-HIGHLIGHTJS-1048676	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
	Prototype Pollution SNYK-JS-FLAT-596927	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Cryptographic Issues SNYK-JS-ELLIPTIC-1064899	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-BROWSERSLIST-1090194	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Server-Side Request Forgery (SSRF) SNYK-JS-AXIOS-1038255	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-TAR-1536758	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-TAR-1536758	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
	Prototype Pollution SNYK-JS-LODASH-590103	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: nock

• 13.1.1 - 2021-07-04
  

  13.1.1 (2021-07-04)

  Bug Fixes

  • types: allow readonly arrays for data matcher in types (#2215) (940f4b7)
• 13.1.0 - 2021-05-31
  

  13.1.0 (2021-05-31)

  Features

  • node 16 compatibility (#2199) (af05502)
• 13.0.11 - 2021-03-07
  

  13.0.11 (2021-03-07)

  Bug Fixes

  • interceptor: don't require leading slash if Scope has a base pathname (#2168) (bfbbbb7)
• 13.0.10 - 2021-03-02
  

  13.0.10 (2021-03-02)

  Bug Fixes

  • recorder: don't automatically resume the response (#2160) (e22d734)
• 13.0.9 - 2021-02-27
  

  13.0.9 (2021-02-27)

  Bug Fixes

  • playback: consistently check for destroyed attribute (#2152) (b9758c8)
• 13.0.8 - 2021-02-25
  

  13.0.8 (2021-02-25)

  Bug Fixes

  • socket: add encrypted attribute for secure requests (#2149) (8de6b69), closes /github.com/nodejs/node/blob/295e766c2782d6d83e33004f7c2204c0a8d52655/lib/_tls_wrap.js#L507-L509
• 13.0.7 - 2021-01-30
  

  13.0.7 (2021-01-30)

  Bug Fixes

  • recorder: escape single quotes in path of default output (#2137) (0f7b52e)
• 13.0.6 - 2021-01-20
  

  13.0.6 (2021-01-20)

  Bug Fixes

  • intercept: handle global flags during regexp matching (#2135) (dc04694), closes #2134
• 13.0.5 - 2020-11-11
  

  13.0.5 (2020-11-11)

  Bug Fixes

  • overrider: allow calling empty req.end multiple times (20e9f8a), closes /github.com/nodejs/node/blob/39a7f7663e8f70fc774105d8fa41b8e4cc69149f/lib/_http_outgoing.js#L816
• 13.0.4 - 2020-08-11
  

  13.0.4 (2020-08-11)

  Bug Fixes

  • Parallel requests on same Interceptor are exposed correctly in reply functions (#2056) (6260217)

from nock GitHub release notes

Commit messages

Package name: nock

• 940f4b7 fix(types): allow readonly arrays for data matcher in types (Add setting-your-commit-email-address.md github/docs#2215)
• c852f79 docs(readme): remove Dependabot badge (repo sync github/docs#2207)
• d95c15d ci: use version ranges for `actions/*` actions (#2204)
• 3be288b chore(deps-dev): bump @ sinonjs/fake-timers from 7.0.2 to 7.0.5
• 827eeed chore(deps-dev): bump sinon-chai from 3.5.0 to 3.6.0
• af05502 feat: node 16 compatibility (repo sync github/docs#2199)
• 3efd738 chore(deps-dev): bump eslint from 7.21.0 to 7.25.0 (repo sync github/docs#2191)
• 8f14301 chore(deps-dev): bump eslint-config-prettier from 8.1.0 to 8.3.0 (#2192)
• 28ea37f chore(deps-dev): bump semantic-release from 17.4.1 to 17.4.2 (Updated github/docs#2176)
• 8a611e4 chore(deps-dev): bump mocha from 8.3.1 to 8.3.2 (repo sync github/docs#2180)
• c08d905 chore(deps-dev): bump dtslint from 4.0.7 to 4.0.9 (Update working-with-ssh-key-passphrases.md github/docs#2188)
• eedb4d9 chore(deps): bump actions/cache from v2.1.4 to v2.1.5 (repo sync github/docs#2189)
• 7f7c7b7 chore(deps-dev): bump sinon from 9.2.4 to 10.0.0 (Update creating-a-github-pages-site-with-jekyll.md github/docs#2178)
• 2134a41 docs(readme): update docs for repeating usage (repo sync github/docs#2169)
• bfbbbb7 fix(interceptor): don't require leading slash if Scope has a base pathname (repo sync github/docs#2168)
• cbee6fe chore(deps): bump actions/cache from v2 to v2.1.4 (docs: update nodejs template guide to match node versions github/docs#2158)
• 94a141a chore(test) update/remove client specific tests (Merge/ github/docs#2167)
• bf514a0 chore(deps-dev): bump typescript from 4.2.2 to 4.2.3
• 1b9e33c chore(deps-dev): bump mocha from 8.3.0 to 8.3.1
• 9c5a984 chore(deps-dev): bump eslint-plugin-mocha from 8.0.0 to 8.1.0
• 0183985 chore(deps-dev): bump semantic-release from 17.3.9 to 17.4.1
• d7985d7 chore(deps-dev): bump chai from 4.3.0 to 4.3.3
• 5eed322 chore(deps-dev): bump eslint-config-prettier from 6.15.0 to 8.1.0 (dependabot/npm_and_yarn/rollup-2.35.0 github/docs#2161)
• a3d0268 chore(deps-dev): bump eslint-config-standard from 14.1.1 to 16.0.2 (Ask github/docs#2156)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs