[Snyk] Security upgrade minimatch from 5.1.2 to 9.0.6

[snyk-io]

Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

• package.json
• package-lock.json

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Infinite loop SNYK-JS-BRACEEXPANSION-15789759	99

Breaking Change Risk

Notice: This assessment is enhanced by AI.

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

[snyk-io]

This is a major version upgrade from v5 to v9 that includes several significant breaking changes requiring developer action.

Key Breaking Changes:

• v9.0.0: Module Imports Changed

  • The package no longer has a default export. You must now use named exports to import the minimatch function. This will require code changes wherever minimatch is used.

• v9.0.6: Node.js Version Requirement

  • This version and later require Node.js version 18 or higher. Builds running on older Node.js versions like 16 will fail.

• v8.0.0: Dropped Node.js Support

  • This version also dropped support for older, unspecified Node.js versions.

• v7.0.0: Behavioral Change (Opt-in)

  • A change was introduced to simplify patterns containing .. (e.g., a/b/../* becomes a/*). This behavior is now opt-in and not enabled by default in later versions, but it's a significant change to be aware of if you enable advanced optimizations.

Recommendation:
Before merging, you must update your code to use named imports. For example:

const minimatch = require('minimatch')

should be changed to:

const { minimatch } = require('minimatch')

Additionally, ensure your production environment is running Node.js 18 or newer.

Source: Changelog

Notice 🤖: This content was augmented using artificial intelligence. AI-generated content may contain errors and should be reviewed for accuracy before use.

[snyk-io]

⛔ Snyk checks have failed. 1 issues have been found so far.

Status	Scan Engine	Critical	High	Medium	Low	Total (1)
⛔	Open Source Security	0	1	0	0	1 issues
✅	Licenses	0	0	0	0	0 issues
✅	Code Security	0	0	0	0	0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.