[Snyk] Fix for 1 vulnerabilities

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	758/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.3	Prototype Pollution SNYK-JS-LODASH-608086	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: newman

The new version differs by 250 commits.

• e618e8e Merge branch 'release/5.1.2'
• d344a1f Update postman-collection-transformer to version 3.3.3
• 366b481 Merge branch 'release/5.1.2' into develop
• 9ec6c77 Merge branch 'release/5.1.2'
• e6077ab Release v5.1.2
• 600493b Update system test
• 76b4722 Update getpostman.com -> postman.com
• 3455a65 Update dependencies
• c30b1c5 Merge branch 'release/5.1.1' into develop
• 0515695 Merge branch 'release/5.1.1'
• 64b743f Release v5.1.1
• d3858d8 Merge pull request #2398 from postmanlabs/dependabot/npm_and_yarn/mocha-8.0.1
• b586ac8 Merge branch 'develop' into dependabot/npm_and_yarn/mocha-8.0.1
• c7e450e Chore(deps-dev): bump mocha from 7.2.0 to 8.0.1
• 5137161 Merge pull request #2426 from postmanlabs/dependabot/npm_and_yarn/chardet-1.2.1
• b1fa61b Merge pull request #2418 from postmanlabs/dependabot/npm_and_yarn/nock-13.0.2
• 604e6b9 Merge pull request #2425 from postmanlabs/dependabot/npm_and_yarn/eslint-7.4.0
• cc1b9fa Chore(deps): bump chardet from 1.1.0 to 1.2.1
• 040f5ca Chore(deps-dev): bump nock from 12.0.3 to 13.0.2
• c1dd59c Chore(deps-dev): bump eslint from 7.2.0 to 7.4.0
• 977545e Merge pull request #2403 from postmanlabs/dependabot/npm_and_yarn/postman-runtime-7.26.1
• 70bdc6b Merge branch 'develop' into dependabot/npm_and_yarn/postman-runtime-7.26.1
• cc52dfb Update integration test coverage threshold
• 318fbce Skip failing /redirect-to tests

See the full diff

Package name: waterline-adapter-tests

The new version differs by 169 commits.

• 944f2b7 1.0.0
• 0eb219f 1.0.0-13
• 26f2034 Fix misconfigured many-to-many association
• 354007d Remove errant log
• aaa500c 1.0.0-12
• cf24518 Add tests for `omit`
• 8770d6e Add `archiveModelIdentity: false` where necessary to avoid errors re: Archive model in tests.
• f03938d 1.0.0-11
• 9e76b38 Test "json" attribute creation against all valid JSON types
• 795da10 Test that `replaceCollection` doesn't allow > 1 parent record IDs when operating on a one-to-many relationship
• d9371e4 1.0.0-10
• 23f2fb9 Test that child records aren't processed > 1 time and aren't attached by reference
• f101d92 Use correct fixtures for `belongsTo` find+populate tests
• 066d6d9 Add json attribute to `belongsTo` parent fixture
• 561141d 1.0.0-9
• 875c6d9 Add test for correctly removing unnecessary conjuncts/disjuncts
• e389d1a Don't set `id` in the "update unique to the same value" test
• 2e77032 Whitespace
• a4017f9 Fix test added in https://github.com/balderdashy/waterline-adapter-tests//commit/9bad9416f19040feeb1880b410e760dece4f921e to not expect the taxi ID to always be 1
• 9bad941 Add test to ensure that child criteria are disambiguated in many-to-many joins
• 19dbf70 Add a couple of tests that check that values aren't over-escaped.
• a8f1dac 1.0.0-8
• 4d6b45e Don't run "update PK" test on sails-disk.
• 402bd89 Use roadstead versions

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic