[Snyk] Fix for 2 vulnerabilities

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	416/1000 Why? Recently disclosed, Has a fix available, CVSS 2.6	Information Exposure SNYK-JS-FOLLOWREDIRECTS-2396346	Yes	No Known Exploit
	663/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 5.4	Cross-site Scripting (XSS) SNYK-JS-KARMA-2395349	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: github

The new version differs by 250 commits.

• 3c4ab02 breaking: remove `.get{Scope name}Api()` methods
• 1956da2 test: remove test for `.get{Scope name}Api()` methods
• 31ba34a docs(CONTRIBUTING): add note about how type definitions and API docs are generated and published automatically
• 762a7e3 docs(README): remove dev notes section
• 5e5d2b2 chore: remove `followRedirects` option from type definitions
• abb2be4 chore(package): publish to npm with @ next dist tag
• 51eeb0d fix: no headers are sent if there are no headers
• 20da873 test: no "link" header is sent if there are no pages
• 7f3528a chore(package): deploy docs after publish
• 49d21dd chore(package): build:docs script
• 2e98859 chore(script): generate API docs
• 21b234b docs(README): add heads up comment to keep README example and type definition templates in sync
• 21c50a8 chore(gitignore): doc/apidoc.js
• cd70273 chore: lowercase scripts file names
• 2c4041c docs: remove `debug` argument from flow/typescript definitions
• c38c021 chore: fix "build" task
• e1aca12 chore(travis): test also in Node 9
• f835007 refactor: set all options at once
• 97930c9 chore: remove unneded if block
• a2ec929 chore: remove code handling response JSON parsing errors
• d9bdadf test: 504 & 500 errors
• 50ba6d9 test: ignore response error handling for test coverage
• 58178ca chore: remove unused code
• b4482e6 test: oauth with other query params

See the full diff

Package name: karma

The new version differs by 250 commits.

• c97e562 chore(release): 6.3.14 [skip ci]
• 91d5acd fix: remove string template from client code
• 69cfc76 fix: warn when `singleRun` and `autoWatch` are `false`
• 839578c fix(security): remove XSS vulnerability in `returnUrl` query param
• db53785 chore(release): 6.3.13 [skip ci]
• 5bf2df3 fix(deps): bump log4js to resolve security issue
• 36ad678 chore(release): 6.3.12 [skip ci]
• 41bed33 fix: remove depreciation warning from log4js
• c985155 docs: create security.md
• c96f0c5 chore(release): 6.3.11 [skip ci]
• a5219c5 fix(deps): pin colors package to 1.4.0 due to security vulnerability
• de0df2f test: fix version regex in the CLI test case
• eddb2e8 chore(release): 6.3.10 [skip ci]
• 0d24bd9 fix(logger): create parent folders if they are missing
• b8eafe9 chore(release): 6.3.9 [skip ci]
• cf318e5 test: add test case for restarting test run on file change
• 92ffe60 fix: restartOnFileChange option not restarting the test run
• b153355 style: fix grammar error in browser capture log message
• 8f798d5 chore(release): 6.3.8 [skip ci]
• 4f23b14 fix(reporter): warning if stack trace contains generated code invocation
• 4c6f681 build: remove husky and validation hooks
• a2261bb build: use matching commitlint config
• 920fa33 chore(release): 6.3.7 [skip ci]
• f1aeaec fix(middleware): replace %X_UA_COMPATIBLE% marker anywhere in the file

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic