[Snyk] Security upgrade npmlog from 4.1.2 to 7.0.1

[poode]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

⚠️ Warning

Failed to update the package-lock.json, please update manually before merging.

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: npmlog

The new version differs by 51 commits.

• ae1f107 chore: release 7.0.1 (#134)
• add709d fix: do not enable progress while paused
• 35651cf chore: postinstall for dependabot template-oss PR
• 40ea375 chore: bump @ npmcli/template-oss from 4.5.1 to 4.6.1
• 040c663 chore: release 7.0.0 (#123)
• 47f4fb1 chore: bump @ npmcli/eslint-config from 3.1.0 to 4.0.0
• 01dd16e deps: bump gauge from 4.0.4 to 5.0.0
• f896c8e deps: bump are-we-there-yet from 3.0.1 to 4.0.0
• 92546b8 chore: postinstall for dependabot template-oss PR
• 33b83ef chore: bump @ npmcli/template-oss from 4.4.4 to 4.5.1
• d4820b9 chore: postinstall for dependabot template-oss PR
• ed07d95 chore: bump @ npmcli/template-oss from 4.3.2 to 4.4.4
• b7d204d feat!: postinstall for dependabot template-oss PR
• bd3c67b chore: bump @ npmcli/template-oss from 3.6.0 to 4.3.2
• 36e8210 chore: postinstall for dependabot template-oss PR
• fb96681 chore: bump @ npmcli/template-oss from 3.5.0 to 3.6.0
• 4b021c3 chore: bump @ npmcli/template-oss from 3.4.2 to 3.4.3 (#112)
• 6eeb7df chore: postinstall for dependabot template-oss PR
• c0e798d chore: bump @ npmcli/template-oss from 3.4.1 to 3.4.2
• 87e9ff0 chore(main): release 6.0.2 (#106)
• ca78ea6 chore: bump @ npmcli/template-oss from 3.2.0 to 3.4.1 (#110)
• 2ee3207 chore: bump tap from 15.2.3 to 16.0.1 (#107)
• ab9b134 chore: bump @ npmcli/template-oss from 2.9.2 to 3.2.0 (#105)
• 929686c deps: update gauge requirement from ^4.0.2 to ^4.0.3 (#101)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Note: This is a default PR template raised by Snyk. Find out more about how you can customise Snyk PRs in our documentation.

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)