[Snyk] Upgrade coveralls from 3.0.9 to 3.1.1

[Swyftx-Pty-Ltd]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade coveralls from 3.0.9 to 3.1.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 7 versions ahead of your current version.
• The recommended version was released a year ago, on 2021-06-29.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) npm:diff:20180305	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept
	Prototype Pollution SNYK-JS-Y18N-1021887	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept
	Prototype Pollution SNYK-JS-Y18N-1021887	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept
	Arbitrary File Write SNYK-JS-TAR-1579155	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	No Known Exploit
	Arbitrary File Write SNYK-JS-TAR-1579152	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	No Known Exploit
	Arbitrary File Write SNYK-JS-TAR-1579147	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	No Known Exploit
	Arbitrary File Overwrite SNYK-JS-TAR-1536531	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	No Known Exploit
	Arbitrary File Overwrite SNYK-JS-TAR-1536528	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MOCHA-561476	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	No Known Exploit
	Prototype Pollution SNYK-JS-LODASH-608086	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-567746	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept
	Command Injection SNYK-JS-LODASH-1040724	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept
	Prototype Pollution SNYK-JS-JSONSCHEMA-1920922	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	No Known Exploit
	Prototype Pollution SNYK-JS-INI-1048974	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept
	Prototype Pollution SNYK-JS-COPYPROPS-1082870	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept
	Prototype Pollution SNYK-JS-AJV-584908	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ACORN-559469	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	No Known Exploit
	Prototype Pollution SNYK-JS-YARGSPARSER-560381	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept
	Prototype Pollution SNYK-JS-YARGSPARSER-560381	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept
	Prototype Pollution SNYK-JS-YARGSPARSER-560381	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHPARSE-1077067	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-559764	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-559764	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept
	Reverse Tabnabbing SNYK-JS-ISTANBULREPORTS-2328088	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-HOSTEDGITINFO-1088355	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept
	Prototype Pollution SNYK-JS-FLAT-596927	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-TAR-1536758	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	No Known Exploit
	Prototype Pollution SNYK-JS-MINIMIST-2429795	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-2429795	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept
	Validation Bypass SNYK-JS-KINDOF-537849	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: coveralls

• 3.1.1 - 2021-06-29
  
  • swapped exec for execFile. Credit: Adar Zandberg from the CxSCA AppSec team at Checkmarx.
  • updated devDependencies
  • merged Dependabot PRs
• 3.1.0 - 2020-04-24
  
  • Handle service_job_number for parallelism in Travis and CircleCI (#290) 705c3b5
  • Update sinon to v7.5.0. (#288) eb6dc35

  v3.0.14...v3.1.0

  ---

  This is a minor release due to the change in behavior for CircleCI, which now uses the Workflow ID to merge parallel coverage jobs:

      options.service_number = process.env.CIRCLE_WORKFLOW_ID;
      options.service_job_number = process.env.CIRCLE_BUILD_NUM;

• 3.0.14 - 2020-04-23
  
  • Update safe dependencies and fix npm vulnerabilities (#284) 59a57e2
  • Move fixtures to test/fixtures. (#286) a0c6941 @ XhmikosR
  • GH Action workflow update (#287) 1615297
  • Minor lint tweaks (#285) 3647673 @ XhmikosR
  • remove redundant code (#283) ff21930 @ lpinca
• 3.0.13 - 2020-04-21
  

  remove redundant code (#283)

  The check is already done above.

• 3.0.12 - 2020-04-21
  

  3.0.12

• 3.0.11 - 2020-03-19
  

  Improved:

  • If COVERALLS_SERVICE_NUMBER is set, set service_number from it. (@ midgleyc)
• 3.0.10 - 2020-03-19
  

  Added:

  • CodeFresh support (@ suda)

  Improved:

  • Travis Pro repo token handling (@ benpetty @ derekherman)
  • Readme Jest example re: posting on success only (@ AndreMiras)

  Updated:

  • minimist version (@ ashishkujoy)
  • GitHub CI actions checkout v2 (@ XhmikosR)
• 3.0.9 - 2019-11-26

from coveralls GitHub release notes

Commit messages

Package name: coveralls

• 565da5f swap exec for execFile in fetchGitData
• 79c97ba Bump dot-prop from 4.2.0 to 4.2.1
• 59643bc Bump hosted-git-info from 2.8.8 to 2.8.9
• 326abbc Bump lodash from 4.17.15 to 4.17.21
• 9598930 Bump y18n from 4.0.0 to 4.0.1
• 3bf6386 Bump ini from 1.3.5 to 1.3.7
• 21f7b1d Update README.md
• 65fd013 xo: make `handle-callback-err` an error.
• f4dee84 Regenerate package-lock.json
• 3f808ee package.json: reorder properties and add homepage
• affd0f0 Update sinon to v.8.x.
• fa8ab4c tests: fix deprecation warning coming from `sinon.sandbox.create()`
• 41df01b Switch to `[email protected]` for linting
• 80bc04e Minor CI tweaks
• 14e8b44 readme typo
• 55c64cb update README with links to demo repo
• 536f3c2 readme re: flag names, CircleCI Orb
• 2f95964 3.1.0
• 705c3b5 Handle service_job_number for parallelism in Travis and CircleCI (#290)
• eb6dc35 Update sinon to v7.5.0. (#288)
• 844d765 3.0.14
• 59a57e2 Update safe dependencies and fix npm vulnerabilities (#284)
• a0c6941 Move fixtures to test/fixtures. (#286)
• 1615297 GH Action workflow update (#287)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs