chore(dependencies): bump @apidevtools/json-schema-ref-parser to 11.6…

[SF97]

A dependency used in this project @apidevtools/json-schema-ref-parser is vulnerable to a prototype pollution attack, as listed in https://nvd.nist.gov/vuln/detail/CVE-2024-29651 - CVE-2024-29651

This PR bumps the dependency to prevent any vulnerabilities, although it doesn't seem to affect this package directly. The major version changes don't seem to affect this package, and the tests are still passing

Closes https://github.com/cdimascio/express-openapi-validator/issues/919

References

• https://ossindex.sonatype.org/vulnerability/CVE-2024-29651
• https://github.com/advisories/GHSA-5f97-h2c2-826q
• https://github.com/APIDevTools/json-schema-ref-parser/commit/8cad7f72c15b198f4d0b5b1c8a3a979b2e4baa82
• https://nvd.nist.gov/vuln/detail/CVE-2024-29651

[cdimascio]

Thanks for this. Looks good. Please resolve the merge conflict and I'll get a new version cut asap

[SF97]

Thanks for this. Looks good. Please resolve the merge conflict and I'll get a new version cut asap

Done :)

[xpol]

Any updates?