[Snyk] Upgrade prompts from 2.2.1 to 2.4.1

[snyk-bot]

Snyk has created this PR to upgrade prompts from 2.2.1 to 2.4.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 5 versions ahead of your current version.
• The recommended version was released 3 months ago, on 2021-04-01.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Prototype Pollution SNYK-JS-Y18N-1021887	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Prototype Pollution SNYK-JS-INI-1048974	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Prototype Pollution SNYK-JS-COPYPROPS-1082870	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Prototype Pollution SNYK-JS-YARGSPARSER-560381	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	XML External Entity (XXE) Injection SNYK-JS-XMLDOM-1084960	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHPARSE-1077067	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-HOSTEDGITINFO-1088355	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: prompts

• 2.4.1 - 2021-04-01
  

  Fixed issue with cursor in text prompt #300 #249. Thank you @ krishna-acondy

• 2.4.0 - 2020-10-26
  
  • Add stdin and stdout to the docs (#257, #258)
  • Update build dependencies
  • Updated readme markup #272
  • Loop cursor on all select-style prompts (#270)
  • fix(inject): treat undefined in inject as initial value (#266)
  • Remove internal use of process.stdout (#274, #275)
  • Handle escape as exit + clearFirst feature for autocomplete (#280)

  Thank you to all the contributors! 💯

• 2.3.2 - 2020-03-18
  

  2.3.2

• 2.3.1 - 2020-02-14
  
  • Fix issue where multiselect prompt is rendered wrong #253 #175
  • Fix issue where home prints undefined #247 #245
  • Updated dev dependenceis

  Thank you @ DrunkenPoney and @ jamezrin 🎉

• 2.3.0 - 2019-11-10
  
  • Update documentation #195 #223
  • Added an option to change the number of items displayed #189
  • Fix (multi)select falsy values #187 #188
  • Add table of contents for the prompt types #222
  • Hiding page number when only single page is there #210
  • Evaluate type before other options and skip if falsy #217
  • Fix autocompleteMultiselect instructions bug #216
  • Fix for opts.out changed to opts.stdout #209 #208
  • Fix Number prompt can get pass minimum #203 #204
  • Fix Number type ignore minimum #201 #202
  • Add maxVisible option for select prompts #225
  • Store correct reference of last prompt #221 #198
  • Remove multi-pages on autocomplete, instead scroll down/up #230

  Thank you everyone! 💯

• 2.2.1 - 2019-08-05
  

  2.2.1

from prompts GitHub release notes

Commit messages

Package name: prompts

• 22fe104 2.4.1
• 771ff1d fix(text-input): make cursor reflect current position (Updated Russian translation laurent22/joplin#300)
• 6e11c76 Added gh size action (Feature Request - add the folder name to the note render laurent22/joplin#286)
• 972fbb2 2.4.0
• f437308 Update sisteransi
• 53ab834 handle escape as exit + clearFirst featue for autocomplete ([Feature request] Option to disable auto-save laurent22/joplin#280)
• 9628ebe Fixes Cannot sync other devices laurent22/joplin#274: remove internal use of process.stdout (Feature Request: Spell check laurent22/joplin#275)
• a90d118 fix(inject): treat undefined in inject as initial value ([Feature Request] Custom font in Editor laurent22/joplin#266)
• abe3c01 Loop cursor on all select-style prompts (Bug on Joplin App: Data typed is Cleared when airplane mode is re-activated.  laurent22/joplin#270)
• 6c51699 Fixed HTML (Add build instructions for Windows laurent22/joplin#272)
• be513e2 Bump lodash from 4.17.15 to 4.17.19 (Shows error executing terminal app with flags laurent22/joplin#268)
• 2d776bb Fixes [Feature request] Shortcuts to focus differents layout components laurent22/joplin#257: Add stdin and stdout to the docs (Photos when captured from camera are not added to the note in joplin notepad.  laurent22/joplin#258)
• b1dd6b1 Update sisteransi
• 603e823 2.3.2
• 4230144 Update dependencies
• a3ea77d autocomplete: fix bold symbols (Joplin emptied my whole database! laurent22/joplin#255)
• 71e1512 Update funding.yml
• ed765bc Create funding.yml
• 2047fcd 2.3.1
• 860b71e Update dependencies
• a5b4789 Fix "Multiselect repeated in terminal" (Sync issues laurent22/joplin#253)
• 9b14789 fix Missing documentation for filesystem sync in the CLI application laurent22/joplin#245: home prints `undefined` (Error checking for updates laurent22/joplin#247)
• 07981e4 2.3.0
• 540b005 Update example

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs