[Snyk] Fix for 1 vulnerabilities

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • deps/npm/package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Issue	Breaking Change	Exploit Maturity
	Insertion of Sensitive Information into Log File SNYK-JS-NPMREGISTRYFETCH-575432	Yes	No Known Exploit

Commit messages

Package name: libnpm

The new version differs by 4 commits.

• d24cd69 chore(release): 3.0.1
• b4c1696 deps: bump deps for cacache@12 update
• 54070f6 chore(release): 3.0.0
• 56cc8e5 npm-lifecycle@3.0.0

See the full diff

Package name: npm-registry-fetch

The new version differs by 16 commits.

• 62ce833 chore(release): 4.0.5
• 43a5d84 chore: remove basic auth data from logs
• 71ab0e7 chore(release): 4.0.4
• fc5d94c Put default timeout back to zero
• 2e0c446 chore(release): 4.0.3
• d7d8c58 chore: publish as latest-v4
• 69c2977 fix: use 30s default for timeout as per README
• fe7b129 chore(doc): document the effect of ?write=true on caching
• ba8b4fe fix: always bypass cache when ?write=true
• b758555 chore(release): 4.0.2
• e3a0186 fix: Add null check on body on 401 errors
• ff5f990 test(check-response): Added missing tests
• 49059f0 chore(release): 4.0.1
• 8eae5f0 fix(deps): Add explicit dependency on safe-buffer
• 5dbd1d7 chore(release): 4.0.0
• 0c4f060 cacache@12.0.0, infer uid from cache folder

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic