[Snyk] Fix for 1 vulnerabilities

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Issue	Breaking Change	Exploit Maturity
	Prototype Pollution SNYK-JS-LODASH-567746	Yes	Proof of Concept

Commit messages

Package name: archiver

The new version differs by 67 commits.

• 6e90767 bump version for release.
• 00c5dcd bump deps. switch to caret.
• b47a818 bump deps.
• 5f4b156 bump deps.
• f836fd8 test node v5.
• 75749fa add GTM.
• f088841 adjust deploy-docs commit message.
• c3d7833 simplify readme. adjust changelog.
• 6a1e219 jsdoc: changelog.
• daa097b docs: move build badges to new line.
• d7d1dcc exit deploy-docs on first error.
• b151246 docs(jsdoc): set archiver.projectName.
• c6a47ad docs(jsdoc): switch templates.
• 1b9d64f stop including date in jsdoc footer.
• 4c15e28 deploy.sh -> deploy-docs.sh
• 3b97c97 build: automated docs build trigger.
• 6b669fe first attempt at automated docs build.
• 56e57c5 first attempt at automated docs build.
• 0cf90c6 first attempt at automated docs build.
• 64a629e first attempt at automated docs build.
• ee60312 first attempt at automated docs build.
• 201ba0d first attempt at automated docs build.
• 1fcc8c3 fixup tar docs. [ci skip]
• 463c58d fixup glob doc. [ci skip]

See the full diff

Package name: cheerio

The new version differs by 56 commits.

• c3ec1cd Release 0.20.0
• ef848ca Add coveralls badge, remove link to old report
• dbcbe90 Merge pull request #808 from leifhanack/lodash4
• c04ead1 Merge pull request #668 from rwaldin/prop-method
• b5531bb Merge pull request #671 from twolfson/dev/fallback.select.content.sqwished
• 9d98bd7 Merge pull request #704 from Rycochet/master
• 1b9c5c9 Merge pull request #797 from Delgan/641-appendTo_prependTo
• b12cbe8 Update lodash dependeny to 4.1.0
• 8c9b2e0 Merge pull request #796 from Delgan/fix_780
• b09db31 Fix PR #726 adding 'appendTo()' and 'prependTo()'
• ce8829d Added appendTo and prependTo with tests #641
• 4779762 Fix #780 by changing options context in '.find()'
• 8dc1cc9 Add an unit test checking the query of child
• b27bed6 fix #667: attr({foo: null}) removes attribute foo, like attr('foo', null)
• 70c5608 Include reference to dedicated "Loading" section
• fa70a84 Added load method to $
• 4e8483a update css-select to 1.2.0
• 5f2777a Merge pull request #732 from jugglinmike/reinstate-toarray
• 106e42a Merge pull request #776 from dYale/master
• 97149d3 Fixing Grammatical Error
• a1367ee Merge pull request #739 from TrySound/npm-files
• 6c73b7a Merge pull request #773 from JaKXz/patch-1
• 48bb22d Test against node v0.12 --> v4.2
• ec2414d Correct output in example

See the full diff

Package name: inquirer

The new version differs by 11 commits.

• a0c2d4d 0.12.0
• d7943fc Merge pull request #334 from ruyadorno/update-cli-width
• 500660d Updates cli-width dep, fixes #285
• 08030e2 Merge pull request #332 from TrySound/upgrade-lodash
• d3871fc Upgrade lodash
• da678e6 Merge pull request #330 from eush77/short-for-expand
• eb213a2 use "short" property in expand prompt
• adb5c81 Merge pull request #328 from dougluce/master
• 6d69138 Add Emacs up/down keybindings
• f9ca663 Merge pull request #327 from bcoe/defend-width-test
• bedf887 add test for #326

See the full diff

Package name: vinyl-fs

The new version differs by 100 commits.

• de7bf7b 2.0.0
• 59620dc update vinyl
• 5b056f6 update object-assign dep
• 27983ef merge
• 7ca959e remove watch 无法初始化应用 o2team/athena#92
• b9b9469 Merge pull request 字体压缩不生效，且提示找不到路径 o2team/athena#90 from davidbarrows/with-updated-merge-stream-to-1.0.0
• 22e5e13 Updated merge-stream version to 1.0.0
• 5192dec Merge pull request ath b 之后同时生成 *.js和*.min.js,但页面中引入的只有*.js,如何让他只生成一个？ o2team/athena#88 from kketch/fix-event-name
• 65445ec fix wrong event name in README.md
• cb22635 Merge pull request css allinone o2team/athena#85 from Klowner/symlink-passthru-support
• 9f5f6e8 Add symlink copy with `followSymlinks` option
• fa184c4 Merge pull request 按需引入插件如何配置 o2team/athena#82 from stevemao/patch-2
• 0b3eed2 symlink opt.base should be the same as dest
• 3e2a5ef base can be a function now, also add better error messaging. closes 此包里是否包含athena的可视化管理平台 o2team/athena#78
• c7887c1 Merge pull request IMG标签src 图片资源定位问题 o2team/athena#81 from silverwind/patch-1
• 69090c4 use valid semver range for `engine`
• 65090b8 Merge branch 'master' of https://github.com/wearefractal/vinyl-fs
• b481130 fix filter-since
• 30a8507 Merge pull request 我把less文件放在static里面的less文件夹下，引入不编译 o2team/athena#79 from stevemao/improvements
• 8e8135c update vinyl-filter-since
• cb86d86 add missing test for f7516ebac102104ad0f39437f7739bf5aedec165
• a8161c8 update vinyl filter since
• 99db7de add sourcemaps to dest, clear up some dead src code now that empty arrays arent valid globs, dep updates
• d32876f update deps

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic