chore(deps-dev): bump botbuilder from 4.22.2 to 4.22.3

Bumps botbuilder from 4.22.2 to 4.22.3.

Release notes

Bot Framework for JS SDK 4.22.3

This is the June 2024 patch release of the Bot Framework JS SDK. This release contains security updates.

What's Changed

fix: Remove CVE-2020-28469 with with glob-parent 5.1.1 (High) by @JhontSouth in microsoft/botbuilder-js#4670

fix: CodeQL SM04509 issue by @andres-robinet-sw in microsoft/botbuilder-js#4671

bump: Upgrade axios version to ^1.7.2 by @JhontSouth in microsoft/botbuilder-js#4680

fix: Remove CVE-2024-37890 vulnerability by updating the ws package by @sw-joelmut in microsoft/botbuilder-js#4683

fix: Remove CVE-2020-36632 vulnerability by @JhontSouth in microsoft/botbuilder-js#4687

fix: Remove CVE-2022-21680 vulnerability by @JhontSouth in microsoft/botbuilder-js#4688

fix: Remove CVE-2022-21680 vulnerability by @JhontSouth in microsoft/botbuilder-js#4689

fix: Remove CVE-2023-45133 vulnerability by @JhontSouth in microsoft/botbuilder-js#4691

fix: CVE-2020-8203 with lodash.pick by @andres-robinet-sw in microsoft/botbuilder-js#4692

fix: Remove CVE-2020-7774 vulnerability by updating the y18n package by @sw-joelmut in microsoft/botbuilder-js#4693

fix: Remove CVE-2022-0144 vulnerability by @JhontSouth in microsoft/botbuilder-js#4695

fix: Remove CVE-2024-4068 vulnerability by @JhontSouth in microsoft/botbuilder-js#4696

feat: Support Single Tenant authentication through BotFramework-Emulator by @JhontSouth in microsoft/botbuilder-js#4643

refactor: AgentSettings Circular Structure and improve internals by @sw-joelmut in microsoft/botbuilder-js#4641

chore: Moved @types/jswebtoken (in both places) to dependencies. by @tracyboehrer in microsoft/botbuilder-js#4646

chore: #4636 Add more information to Tenant parameters by @sw-joelmut in microsoft/botbuilder-js#4649

fix: SM03944 suppression by @tracyboehrer in microsoft/botbuilder-js#4654

Removed unused build assets by @tracyboehrer in microsoft/botbuilder-js#4658

fix: #4657 bump the npm_and_yarn group across 2 directories with 20 updates by @JhontSouth in microsoft/botbuilder-js#4663

fix: SM04509 suppression by @tracyboehrer in microsoft/botbuilder-js#4667

fix: SM02383 suppression by @tracyboehrer in microsoft/botbuilder-js#4668

fix: #4483 Switching npm dependency bcrypt to bcryptjs by @JhontSouth in microsoft/botbuilder-js#4669

Commits

0eb0ada Merge branch 'main' into releases/4.22
00d1a4c fix: Remove CVE-2024-4068 vulnerability (#4696)
1f15ba2 fix: Remove CVE-2022-0144 vulnerability (#4695)
73d4e4a fix: Remove CVE-2020-7774 vulnerability by updating the y18n package (#4693)
031c2ac fix: CVE-2020-8203 with lodash.pick (#4692)
4f44624 add babel-traverse resolution (#4691)
1c70ebe fix: Remove CVE-2022-21680 vulnerability (#4689)
684a9ff update gulp and gulp-exec versions (#4688)
69e0d2e update mocha version (#4687)
7868ad5 Update ws package to latest non-vulnerable version (#4683)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Name	Link
Latest commit	859bc1f1827d2eea3ea86ac2de698fcfd6fc365c
Latest deploy log	https://app.netlify.com/sites/ecommerce-app-base-components/deploys/667e2c20eaa4510008d76ce5
Deploy Preview	https://deploy-preview-8211--ecommerce-app-base-components.netlify.app
Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

contentful / apps

chore(deps-dev): bump botbuilder from 4.22.2 to 4.22.3 #8211

Bot Framework for JS SDK 4.22.3

What's Changed

Deploy Preview for ecommerce-app-base-components ready!

contentful / apps

chore(deps-dev): bump botbuilder from 4.22.2 to 4.22.3 #8211

Bot Framework for JS SDK 4.22.3

What's Changed

✅ Deploy Preview for ecommerce-app-base-components ready!

Deploy Preview for ecommerce-app-base-components ready!