fix: update vulnerable outdated js-yaml NPM package (#3740)
A run of `npm audit` reported the following vulnerabilities:
$ npm audit
│ Moderate │ Denial of Service
│ Package │ js-yaml
│ Dependency of │ @commitlint/cli [dev]
│ Path │ @commitlint/cli > @commitlint/load > cosmiconfig > js-yaml
│ More info │ https://npmjs.com/advisories/788
│ High │ Code Injection
│ Package │ js-yaml
│ Dependency of │ @commitlint/cli [dev]
│ Path │ @commitlint/cli > @commitlint/load > cosmiconfig > js-yaml
│ More info │ https://npmjs.com/advisories/813
This change was proposed by `npm audit fix` to update the package lock.
1 file changed