[Snyk] Upgrade @crowdin/cli from 3.7.1 to 3.18.0

[Mhmonicox]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade @crowdin/cli from 3.7.1 to 3.18.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 27 versions ahead of your current version.
• The recommended version was released 2 months ago, on 2024-02-07.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Prototype Pollution SNYK-JS-LOADERUTILS-3043105	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Prototype Pollution SNYK-JS-LOADERUTILS-3043105	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Improper Input Validation SNYK-JS-FOLLOWREDIRECTS-6141137	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Server-side Request Forgery (SSRF) SNYK-JS-IP-6240864	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Improper Privilege Management SNYK-JS-SHELLJS-2332187	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Sandbox Bypass SNYK-JS-WEBPACK-3358798	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Path Traversal SNYK-JS-WEBPACKDEVMIDDLEWARE-6476555	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Improper Verification of Cryptographic Signature SNYK-JS-NODEFORGE-2430339	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-NTHCHECK-1586032	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Prototype Poisoning SNYK-JS-QS-3153490	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Remote Code Execution (RCE) SNYK-JS-ETA-2936803	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LOADERUTILS-3105943	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LOADERUTILS-3042992	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LOADERUTILS-3105943	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LOADERUTILS-3042992	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LOADERUTILS-3105943	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-3050818	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Information Exposure SNYK-JS-NANOID-2332193	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Improper Verification of Cryptographic Signature SNYK-JS-NODEFORGE-2430337	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Information Exposure SNYK-JS-FOLLOWREDIRECTS-6444610	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-HTTPCACHESEMANTICS-3248783	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-JSON5-3182856	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-JSON5-3182856	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LOADERUTILS-3042992	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Cross-site Scripting (XSS) SNYK-JS-SERIALIZEJAVASCRIPT-6147607	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SIDEWAYFORMULA-3317169	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-TERSER-2806366	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-UAPARSERJS-3244450	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Improper Verification of Cryptographic Signature SNYK-JS-NODEFORGE-2430341	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Improper Input Validation SNYK-JS-POSTCSS-5926692	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Cross-site Scripting (XSS) SNYK-JS-PRISMJS-2404333	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Cross-site Scripting (XSS) SNYK-JS-ETA-3261240	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Open Redirect SNYK-JS-EXPRESS-6474509	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Information Exposure SNYK-JS-FOLLOWREDIRECTS-2332181	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Information Exposure SNYK-JS-FOLLOWREDIRECTS-2396346	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Incomplete List of Disallowed Inputs SNYK-JS-BABELTRAVERSE-5962462	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: @crowdin/cli

• 3.18.0 - 2024-02-07
  

  What's Changed

  • feat: string-based project support by @ katerina20 in #714

    In string-based projects, the focus is on managing translatable content as individual strings rather than source files. In this project type, after uploading source files, Crowdin parses them into source strings. Unlike file-based projects, source files aren’t stored, and the emphasis is on managing the content at the string level. This approach is beneficial when dealing with projects that involve continuous content updates, dynamic content, or where a string-oriented structure is preferred.

  • docs: update the Files Management article by @ andrii-bodnar in #720

  Full Changelog: 3.17.0...3.18.0

• 3.17.0 - 2024-01-30
  

  What's Changed

  App

  • feat: file command by @ katerina20 in #708 (Documentation)

    ℹ️ Help us to improve the new command - leave your feedback - #713

  Documentation

  • docs: Files management article by @ andrii-bodnar in #712
  • docs: update zip package Readme by @ andrii-bodnar in #711

  Build

  • chore: add codecov.yml by @ andrii-bodnar in #715
  • build(deps): remove findsecbugs-plugin by @ andrii-bodnar in #716

  Full Changelog: 3.16.1...3.17.0

• 3.16.1 - 2024-01-18
  

  What's Changed

  App

  • fix: windows escape symbols by @ katerina20 in #684
  • chore: update init command success message by @ andrii-bodnar in #704

  Documentation

  • docs: update badges and installation guide by @ andrii-bodnar in #698
  • chore(deps): bump follow-redirects from 1.15.2 to 1.15.4 in /website by @ dependabot in #705

  Build

  • build(packages): fix 'packageSourceUrl' for chocolatey package by @ andrii-bodnar in #696
  • ci: improve workflows by @ andrii-bodnar in #697
  • ci: fix chocolatey publishing by @ andrii-bodnar in #699
  • ci: fix chocolatey publishing (2) by @ andrii-bodnar in #700
  • ci: fix zip package structure by @ andrii-bodnar in #702
  • ci: install local chocolatey package before publishing by @ andrii-bodnar in #703

  Full Changelog: 3.16.0...3.16.1

• 3.16.0 - 2024-01-04
  

  What's Changed

  App

  • feat: add config params for init command by @ katerina20 in #670
  • fix: Update dependencies by @ ddninja in #673
  • chore: fix vulnerabilities in direct dependencies by @ andrii-bodnar in #691
  • chore: update links in messages by @ andrii-bodnar in #681

  Build

  • ci: generate zip package and version file, add docker deployment by @ andrii-bodnar in #687
  • ci: FOSSA Dependency Analysis by @ andrii-bodnar in #689
  • chore: remove unused glassfish.jersey deps by @ andrii-bodnar in #690
  • build(deps): drop unused json-patch dependency by @ andrii-bodnar in #692
  • build(deps): update gradle, checkstyle, spotbugs by @ andrii-bodnar in #693
  • build: remove checkstyle by @ andrii-bodnar in #694

  Documentation

  • docs: add sitemap by @ andrii-bodnar in #682
  • docs: disable trailing slash by @ andrii-bodnar in #677
  • docs: fix labels synopsis by @ andrii-bodnar in #676

  New Contributors

  • @ ddninja made their first contribution in #673

  Full Changelog: 3.15.0...3.16.0

• 3.15.0 - 2023-10-25
  Read more
• 3.14.0 - 2023-09-08
  Read more
• 3.13.0 - 2023-06-12
  Read more
• 3.12.0 - 2023-05-30
  Read more
• 3.11.1 - 2023-05-16
• 3.11.0 - 2023-04-24
• 3.10.1 - 2023-03-13
• 3.10.0 - 2023-01-25
• 3.9.3 - 2023-01-17
• 3.9.2 - 2023-01-16
• 3.9.1 - 2022-11-16
• 3.9.0 - 2022-10-17
• 3.8.1 - 2022-09-22
• 3.8.0 - 2022-09-14
• 3.7.10 - 2022-08-12
• 3.7.9 - 2022-07-08
• 3.7.8 - 2022-02-18
• 3.7.7 - 2022-01-14
• 3.7.6 - 2022-01-11
• 3.7.5 - 2022-01-10
• 3.7.4 - 2021-12-17
• 3.7.3 - 2021-12-14
• 3.7.2 - 2021-11-19
• 3.7.1 - 2021-10-28

from @crowdin/cli GitHub release notes

Commit messages

Package name: @crowdin/cli

• d558211 chore(release): version 3.18.0 [skip ci]
• 3d1e7e0 docs: update the Files Management article ([Snyk] Upgrade @docusaurus/core from 2.0.0-beta.13 to 2.4.1 #720)
• 8d00c4b feat: strings based project functionality ([Snyk] Upgrade @docusaurus/core from 2.0.0-beta.13 to 2.4.1 #714)
• e14a7a1 chore(release): version 3.17.0 [skip ci]
• b19d8e0 build(deps): remove findsecbugs-plugin ([Snyk] Upgrade @docusaurus/preset-classic from 2.0.0-beta.13 to 2.4.1 #716)
• 881c476 chore: add codecov.yml ([Snyk] Upgrade @docusaurus/core from 2.0.0-beta.13 to 2.4.1 #715)
• 0d42ad0 docs: update the files discussion id
• 7afdbaa docs: Files management article ([Snyk] Upgrade @crowdin/cli from 3.7.1 to 3.13.0 #712)
• 251867b feat: file command ([Snyk] Upgrade @saucelabs/theme-github-codeblock from 0.1.1 to 0.2.3 #708)
• 70e9c79 docs: update zip package Readme ([Snyk] Upgrade @docusaurus/preset-classic from 2.0.0-beta.13 to 2.4.1 #711)
• b799b6b ci: fix publish triggers [skip ci]
• 5708146 ci: fix zip package
• 95fea21 chore(release): version 3.16.1 [skip ci]
• 5bd205f chore(deps): bump follow-redirects from 1.15.2 to 1.15.4 in /website ([Snyk] Upgrade @docusaurus/preset-classic from 2.0.0-beta.13 to 2.4.1 #705)
• 3376543 chore: update init command success message ([Snyk] Upgrade @docusaurus/core from 2.0.0-beta.13 to 2.4.1 #704)
• 09a79dc fix: windows escape symbols ([Snyk] Upgrade @docusaurus/core from 2.0.0-beta.13 to 2.4.1 #684)
• 1bedcde ci: install local chocolatey package before publishing ([Snyk] Upgrade @saucelabs/theme-github-codeblock from 0.1.1 to 0.2.3 #703)
• af83766 build(chocolatey): Update chocolateyinstall.ps1 checksum
• b495968 ci: fix zip package structure ([Snyk] Upgrade @crowdin/cli from 3.7.1 to 3.13.0 #702)
• 0d8fc63 ci: fix chocolatey publishing (2) ([Snyk] Upgrade @docusaurus/preset-classic from 2.0.0-beta.13 to 2.4.1 #700)
• bb4a82c ci: fix chocolatey publishing ([Snyk] Upgrade @docusaurus/core from 2.0.0-beta.13 to 2.4.1 #699)
• 59c379e docs: update badges and installation guide ([Snyk] Upgrade @saucelabs/theme-github-codeblock from 0.1.1 to 0.2.3 #698)
• 3d25d9d ci: improve workflows ([Snyk] Upgrade @crowdin/cli from 3.7.1 to 3.13.0 #697)
• 936608b build(packages): fix 'packageSourceUrl' for chocolatey package ([Snyk] Upgrade @docusaurus/preset-classic from 2.0.0-beta.13 to 2.4.1 #696)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs