build(deps-dev): bump jsonpath-plus from 6.0.1 to 10.1.0

[dependabot[bot]]

Bumps jsonpath-plus from 6.0.1 to 10.1.0.

Release notes

Sourced from jsonpath-plus's releases.

v7.2.0

7.2.0 (2022-09-02)

• perf: optimize walk method by 10%-34% (@​jacobroschen)
• chore: add types to exports field (@​awlayton)

Changelog

Sourced from jsonpath-plus's changelog.

10.1.0

• feat: add typeof operator to safe script

10.0.7

• fix(security): prevent constructor access
• docs: add security policy file

10.0.6

• fix(security): prevent call/apply invocation of Function

10.0.5

• fix: remove overly aggressive disabling of native functions but disallow __proto__

10.0.4

• fix(security): further prevent binding of Function calls which may evade detection

10.0.3

• fix(security): prevent binding of Function calls which may evade detection

10.0.2

• fix(security): prevent Function calls outside of member expressions

10.0.1

• fix(security): prohibit Function in "safe" vm

10.0.0

BREAKING CHANGES:

• Require Node 18+

• fix(security): use safe vm by default in Node

• chore: bump jsep, devDeps. and lint

9.0.0

BREAKING CHANGES:

• Removes preventEval property. Prefer eval: false instead.

• Changed behavior of eval property. In the browser, eval/Function won't be used by default to evaluate expressions. Instead, we'll safely evaluate using a subset of JavaScript. To resume using unsafe eval in the browser, pass in the option eval: "native"

• feat: add safe eval for browser and eval option (#185) (@​80avin)

• feat: add ignoreEvalErrors property (@​80avin)

... (truncated)

Commits

• 93612a3 chore: bump version
• 4a16cbd feat: add undefined, null literals to safe script
• f119fe3 feat: add typeof operator to safe script
• b70aa71 fix(security): prevent constructor access in safe vm
• 763ada0 fix(security): prevent call/apply invocation of Function
• 98a6b22 fix: remove overly aggressive disabling of native functions but disallow `__p...
• 30194c7 fix(security): further prevent binding of Function calls which may evade dete...
• eac48fe fix(security): prevent binding of Function calls which may evade detection
• 34a836b chore: bump version
• 5a22e3f fix(security): prevent Function calls outside of member expressions
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)