[Snyk] Fix for 2 vulnerabilities

[gz-c]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	661/1000 Why? Recently disclosed, Has a fix available, CVSS 7.5	Uncontrolled resource consumption SNYK-JS-BRACES-6838727	Yes	No Known Exploit
	661/1000 Why? Recently disclosed, Has a fix available, CVSS 7.5	Inefficient Regular Expression Complexity SNYK-JS-MICROMATCH-6838728	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: karma

The new version differs by 194 commits.

• 42933c9 chore: release v4.2.0
• db1ea57 chore: update contributors
• a1049c6 chore: update eslint packages to latest and fix complaints (#3312)
• 70b72a9 fix(logging): Util inspect for logging the config. (#3332)
• 1087926 fix typo: (#3334)
• 182c04d fix(reporter): format stack with 1-based column (#3325)
• f0c4677 docs(travis): Correct the docs to also show how to do it on Xenial (#3316)
• 3aea7ec chore(deps): update core-js -> ^3.1.3 (#3321)
• 5e11340 chore: revert back to Mocha 4 (#3313)
• 1205bce chore(test): fix flaky test cases (#3314)
• 7f40349 Cleanup dependencies (#3309)
• 7828bea chore: update braces and chokidar to latest versions (#3307)
• fe9a1dd fix(server): Add error handler for webserver socket. (#3300)
• 13ed695 chore: release v4.1.0
• d844a48 chore: update contributors
• ce6825f fix(client): Only create the funky object if message is not a string (#3298)
• 7968db6 fix(client): Enable loading different file types when running in parent mode without iframe (#3289)
• 6556ab4 fix(launcher): Log state transitions in debug (#3294)
• 7eb48c5 fix(middleware): log invalid filetype (#3292)
• c7ebf0b chore: release v4.0.1
• c190c4a chore: update contributors
• 375bb5e fix(filelist): correct logger name. (#3262)
• c43f584 fix: remove vulnerable dependency combine-lists (#3273)
• 4ec4f6f fix: remove vulnerable dependency expand-braces (#3270)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Uncontrolled resource consumption

[CLAassistant]

Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
_{You have signed the CLA already but the status is still pending? Let us recheck it.}