Bump snyk from 1.305.0 to 1.672.0

[dependabot-preview[bot]]

Bumps snyk from 1.305.0 to 1.672.0.

Release notes

Sourced from snyk's releases.

v1.672.0

1.672.0 (2021-07-30)

Bug Fixes

• return correct exit code when using --exclude-base-image-vulns (2c5b41d)

v1.671.0

1.671.0 (2021-07-29)

Bug Fixes

• use correct exit codes for docker entrypoint (73174f5)

v1.670.0

1.670.0 (2021-07-29)

Bug Fixes

• IaC path parsing (8566273)

v1.669.0

1.669.0 (2021-07-28)

Bug Fixes

• IaC multi-doc yaml indexing (b4e6c18)

v1.668.0

1.668.0 (2021-07-27)

Features

• add --help to snyk protect (7580e9f)

v1.667.0

1.667.0 (2021-07-26)

Bug Fixes

• update plugins package versions (e686299)

v1.666.0

1.666.0 (2021-07-22)

... (truncated)

Commits

• 6a48d29 Merge pull request #2138 from snyk/fix/cli-code-0-exclude-base-image-vulns
• 2c5b41d fix: return correct exit code when using --exclude-base-image-vulns
• 0d56ab9 Merge pull request #2135 from snyk/chore/compress-binaries
• 4d8273d test: show that excluding base image vulns returns wrong exit code
• 1ba5025 chore: remove unused semantic-release rc
• f6b78ec chore: compress binary releases
• 7438096 chore: ignore binary-releases directory
• 294148c Merge pull request #2131 from snyk/test/analytics-tests
• d8a4243 Merge pull request #2132 from snyk/chore/remove-release-notes-confirmation
• 34e7c7b test: add acceptance test for analytics
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Automerge options (never/patch/minor, and dev/runtime dependencies) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired)

[dependabot-preview[bot]]

Superseded by #779.