[Snyk] Upgrade node-fetch from 2.6.7 to 2.6.11

[NOUIY]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade node-fetch from 2.6.7 to 2.6.11.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 4 versions ahead of your current version.
• The recommended version was released a month ago, on 2023-05-09.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-3050818	265/1000 Why? CVSS 5.3	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: node-fetch

• 2.6.11 - 2023-05-09
  

  2.6.11 (2023-05-09)

  Reverts

  • Revert "fix: handle bom in text and json (#1739)" (#1741) (afb36f6), closes #1739 #1741
• 2.6.10 - 2023-05-08
  

  2.6.10 (2023-05-08)

  Bug Fixes

  • handle bom in text and json (#1739) (29909d7)
• 2.6.9 - 2023-01-30
  

  2.6.9 (2023-01-30)

  Bug Fixes

  • "global is not defined" (#1704) (70f592d)
• 2.6.8 - 2023-01-13
  

  2.6.8 (2023-01-13)

  Bug Fixes

  • headers: don't forward secure headers on protocol change (#1605) (fddad0e), closes #1599
  • premature close with chunked transfer encoding and for async iterators in Node 12 (#1172) (50536d1), closes #1064 /github.com/node-fetch/node-fetch/pull/1064#issuecomment-849167400
  • prevent hoisting of the undefined global variable in browser.js (#1534) (8bb6e31)
• 2.6.7 - 2022-01-16

from node-fetch GitHub release notes

Commit messages

Package name: node-fetch

• afb36f6 Revert "fix: handle bom in text and json (Add some integration tests for the db panel github/vscode-codeql#1739)" (Fix date format to 'en-US' github/vscode-codeql#1741)
• 29909d7 fix: handle bom in text and json (Add some integration tests for the db panel github/vscode-codeql#1739)
• 70f592d fix: "global is not defined" (Add core classes and models for the new (experimental) databases panel github/vscode-codeql#1704)
• 0f1ebb0 Prevent error when response is null (Set up a watcher that checks for changes to the new db config github/vscode-codeql#1699)
• 6e9464d ci(release): install dependencies
• dd2a0ba ci(release): install dependencies
• 49bef02 ci(release): use latest Node LTS
• ce37bcd ci(semantic-release): config
• 1768eaa ci(release): initial version
• 8bb6e31 fix: prevent hoisting of the undefined `global` variable in `browser.js` (Use domain model for VariantAnalysisHeader github/vscode-codeql#1534)
• e218f8d Add missing changelog entries. (Bump ansi-regex from 4.1.0 to 5.0.1 in /extensions/ql-vscode github/vscode-codeql#1613)
• fddad0e fix(headers): don't forward secure headers on protocol change (Fix deserialization error github/vscode-codeql#1605)
• 50536d1 fix: premature close with chunked transfer encoding and for async iterators in Node 12 (Some UI fixes for collapsible items github/vscode-codeql#1172)
• 838d971 Handle zero-length OK deflate responses (CodeQL CLI download failure causes extension to get stuck github/vscode-codeql#903)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs