fix high severity vulnerability from async

[lmmarsano]

Please upgrade dependencies to packages without known vulnerabilities.
This issues has been submitted to MSRC as vulnerability VULN-065752.

$ npm audit
# npm audit report

async  <2.6.4
Severity: high
Prototype Pollution in async - https://github.com/advisories/GHSA-fwr7-v2mv-hh25
No fix available
node_modules/async
node_modules/winston/node_modules/async
  tfx-cli  *
  Depends on vulnerable versions of async
  Depends on vulnerable versions of prompt
  node_modules/tfx-cli
  winston  0.4.0 - 3.0.0-rc6
  Depends on vulnerable versions of async
  node_modules/winston
    prompt  >=0.1.8
    Depends on vulnerable versions of winston
    node_modules/prompt

4 high severity vulnerabilities

Some issues need review, and may require choosing
a different dependency.
$ npm list tfx-cli
keptn-integration@1.0.0 /home/LOM0227/code/EMF.Keptn.Extension
└── tfx-cli@0.11.0

[KonstantinTyukalov]

Hi @lmmarsano
Thanks for heads up! We have provided PR to fix this: #410

[KonstantinTyukalov]

The related PR has been merged, let me close this issue.
If you have any questions, please let us know and we will reopen this issue.
Thanks!