[master] Fix npm audit

[nextcloud-command]

Audit report

This audit fix resolves 6 of the total 6 vulnerabilities found in your project.

Updated dependencies

• @babel/traverse
• @vue/component-compiler-utils
• debug
• postcss
• semver
• vue-loader

Fixed vulnerabilities

@babel/traverse #

• Babel vulnerable to arbitrary code execution when compiling specifically crafted malicious code
• Severity: critical 🚨 (CVSS 9.4)
• Reference: https://github.com/advisories/GHSA-67hx-6x53-jw92
• Affected versions: <7.23.2
• Package usage:
  • node_modules/@babel/traverse

@vue/component-compiler-utils #

• Caused by vulnerable dependency:
  • postcss
• Affected versions: *
• Package usage:
  • node_modules/@vue/component-compiler-utils

debug #

• Regular Expression Denial of Service in debug
• Severity: low (CVSS 3.7)
• Reference: https://github.com/advisories/GHSA-gxpj-cx7g-858c
• Affected versions: 4.0.0 - 4.3.0
• Package usage:
  • node_modules/debug

postcss #

• PostCSS line return parsing error
• Severity: moderate (CVSS 5.3)
• Reference: https://github.com/advisories/GHSA-7fh5-64p2-3v2j
• Affected versions: <8.4.31
• Package usage:
  • node_modules/@vue/component-compiler-utils/node_modules/postcss
  • node_modules/postcss

semver #

• semver vulnerable to Regular Expression Denial of Service
• Severity: moderate (CVSS 5.3)
• Reference: https://github.com/advisories/GHSA-c2qf-rxjj-qqgw
• Affected versions: 7.0.0 - 7.5.1
• Package usage:
  • node_modules/@vue/babel-preset-app/node_modules/semver

vue-loader #

• Caused by vulnerable dependency:
  • @vue/component-compiler-utils
• Affected versions: 15.0.0-beta.1 - 15.11.1
• Package usage:
  • node_modules/vue-loader