Prototype pollution vulnerability in `jszip@2.5.x`

[s100]

appmetrics depends on jszip@2.5.x, which has this prototype pollution vulnerability in it. Suggested remediation is to upgrade to jszip@3.7.0 or later.

Here is the upgrade guide for upgrading from jszip 2 to 3.