[Snyk] Fix for 2 vulnerabilities

[chnirt]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

#### Changes included in this PR - Changes to the following files to upgrade the vulnerable dependencies to a fixed version: - package.json #### Vulnerabilities that will be fixed ##### With an upgrade: Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity :-------------------------:|-------------------------|:-------------------------|:-------------------------|:-------------------------  | **661/1000**
**Why?** Recently disclosed, Has a fix available, CVSS 7.5 | Uncontrolled resource consumption
[SNYK-JS-BRACES-6838727](https://snyk.io/vuln/SNYK-JS-BRACES-6838727) | Yes | No Known Exploit  | **661/1000**
**Why?** Recently disclosed, Has a fix available, CVSS 7.5 | Inefficient Regular Expression Complexity
[SNYK-JS-MICROMATCH-6838728](https://snyk.io/vuln/SNYK-JS-MICROMATCH-6838728) | Yes | No Known Exploit (*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: @nestjs/graphql

The new version differs by 59 commits.

• 83b4919 Merge pull request #1439 from nestjs/8.0.0
• 1eec21f chore(): resolve conflicts
• 6e1013b Merge pull request #1553 from nestjs/renovate/major-jest-monorepo
• f07a22c Merge pull request #1556 from nestjs/renovate/typescript-4.x
• 5320b6f Merge pull request #1614 from nestjs/renovate/nestjs-mapped-types-1.x
• 0f62a6a chore(): upgrade deps
• 57b9abb chore(): resolve conflicts
• ba1df95 chore(deps): update jest monorepo
• 2ffeb0c chore(deps): update dependency typescript to v4.3.5
• 5a36644 fix(deps): update dependency @ nestjs/mapped-types to v1
• eaaf54d Merge pull request #1502 from nestjs/renovate/apollo-graphql-packages
• fe2d15f Merge pull request #1600 from nestjs/renovate/fast-glob-3.x
• 23ac7ae chore(deps): update apollo graphql packages
• 0f81aaf chore(deps): update dependency @ types/node-fetch to v2.5.11
• 8b87f53 chore(deps): update dependency @ types/jest to v26.0.24
• 07c8c68 chore(deps): update dependency husky to v7.0.1
• 1fa5f09 chore(deps): update typescript-eslint monorepo to v4.28.2
• 3a7468e chore(deps): update dependency eslint to v7.30.0
• d1af144 chore(deps): update dependency husky to v7
• 392a9ae Merge pull request #1605 from shian15810/apollo
• e751df4 fix(gateway): import d.ts from @ apollo/gateway instead of ts
• bf8202a fix(federation): import d.ts from @ apollo/federation instead of ts
• 0355db6 chore(deps): update typescript-eslint monorepo to v4.28.1
• f9780b5 fix(deps): update dependency fast-glob to v3.2.6

See the full diff

Package name: jest-config

The new version differs by 250 commits.

• 8f9b812 v28.0.0
• f424551 feat: Jest 28 blog post (#12732)
• c79f8d6 feat: roll v28 docs (#12733)
• e9f6610 Remove `core.autocrlf` config on CI (#12731)
• 9342a23 docs: add mention of expect breaking change to upgrade guide (#12730)
• e1f2515 chore: add missing `throw`
• 039f43e chore: combine all v27 docs into a single one (#12729)
• 256c1af chore(website): add some admonitions to 25.x (#12565)
• fc85b8f fix: replace hash routine md5 with sha256 (#12722)
• c1a57cb chore(deps): bump isbinaryfile dependency to ^5.0.0 (#12726)
• 9ebfe0a chorer: add note about babel config to upgrade guide (#12724)
• 4ec4b98 chore: cache yarn deps on netlify (#12725)
• 62afb83 chore: revert #12718 and simply do not bundle type declarations of `@ jest/globals` (#12721)
• 4f1d199 Add Yarn dedupe CI check (#12717)
• 7a8c9cf Lock source-map-support verion to 0.5.13 (#12720)
• 811228d Support error logging before jest retry (#12201)
• a28db24 chore: do not bundle type definitions for packages which have only one `.d.ts` file (#12718)
• 49ee158 update dependency @ microsoft/api-extractor to 7.23.0 (#12716)
• e72c52f feat(jest-runner): export `TestRunner` interface types and reexport types from other packages (#12715)
• 3c6f14b feat(jest-resolve): expose `PackageFilter`, `PathFilter` and `PackageJSON` types (#12712)
• a293b75 refactor(jest-transform): rename TransformerConfig (#12708)
• 625e0bc show that setupFilesAfterEnv scripts can define beforeAll (#12702)
• 0208815 feat(jest-resolve): expose `JestResolver`, `AsyncResolver` and `SyncResolver` types (#12707)
• 75c7c40 docs: use admonitions in ExpectAPI.md (#12679)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project. ------------ **Note:** *You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.* For more information: 🧐 [View latest project report](https://app.snyk.io/org/chnirt/project/c35eacd1-94ab-4090-be0c-c6d8c7671e02?utm_source=github&utm_medium=referral&page=fix-pr) 🛠 [Adjust project settings](https://app.snyk.io/org/chnirt/project/c35eacd1-94ab-4090-be0c-c6d8c7671e02?utm_source=github&utm_medium=referral&page=fix-pr/settings) 📚 [Read more about Snyk's upgrade and patch logic](https://support.snyk.io/hc/en-us/articles/360003891078-Snyk-patches-to-fix-vulnerabilities) [//]: # (snyk:metadata:{"prId":"00562521-35b0-483e-b92d-3173836406c0","prPublicId":"00562521-35b0-483e-b92d-3173836406c0","dependencies":[{"name":"@nestjs/graphql","from":"7.11.0","to":"8.0.0"},{"name":"jest-config","from":"24.9.0","to":"28.0.0"}],"packageManager":"npm","projectPublicId":"c35eacd1-94ab-4090-be0c-c6d8c7671e02","projectUrl":"https://app.snyk.io/org/chnirt/project/c35eacd1-94ab-4090-be0c-c6d8c7671e02?utm_source=github&utm_medium=referral&page=fix-pr","type":"auto","patch":[],"vulns":["SNYK-JS-BRACES-6838727","SNYK-JS-MICROMATCH-6838728"],"upgrade":["SNYK-JS-BRACES-6838727","SNYK-JS-MICROMATCH-6838728"],"isBreakingChange":true,"env":"prod","prType":"fix","templateVariants":["priorityScore"],"priorityScoreList":[661,661],"remediationStrategy":"vuln"}) --- **Learn how to fix vulnerabilities with free interactive lessons:** 🦉 [Uncontrolled resource consumption](https://learn.snyk.io/lesson/redos/?loc=fix-pr)