PRISMA-2022-0039 in minimatch version 3.0.4 dependency

[Murali84]

Minimatch is flagged as HIGH vulnerability in PRISMA. Fix version found in 3.0.5.

PRISMA issue link: https://github.com/isaacs/minimatch/commit/a8763f4388e51956be62dc6025cec1126beeb5e6

Can you please check and let me know if more info required?

[evansjarom11]

This vulnerability is also listed here: https://nvd.nist.gov/vuln/detail/CVE-2022-3517#range-8457383

[mastmaster]

Add this to your package.json and test it "overrides": { "test-exclude": { "minimatch": ">=3.0.5" } }