[Snyk] Upgrade commander from 2.16.0 to 2.20.3

[nr-security-github]

Snyk has created this PR to upgrade commander from 2.16.0 to 2.20.3.

✨What is Merge Advice?

We check thousands of dependency upgrade pull requests and CI tests every day to see which upgrades were successfully merged. After crunching this data, we give a recommendation on how safe we think the change is for you to merge without causing issues. Learn more, and share your feedback to help improve this feature. 🙏

As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 7 versions ahead of your current version.
• The recommended version was released 8 months ago, on 2019-10-11.

Release notes

Package name: commander

• 2.20.3 - 2019-10-11
  

  Ran "npm unpublish commander@2.20.2". There is no 2.20.2.

  Fixed

  • Support Node.js 0.10 (Revert #1059)
• 2.20.1 - 2019-09-28
  

  Fixed

  • Improve tracking of executable subcommands.

  Changed

  • update development dependencies

  Credits:

  • issue identified by Checkmarx Application Security Research Team
• 2.20.0 - 2019-04-03
  
  • fix: resolve symbolic links completely when hunting for subcommands (#935)
  • Update index.d.ts (#930)
  • Update Readme.md (#924)
  • Remove --save option as it isn't required anymore (#918)
  • Add link to the license file (#900)
  • Added example of receiving args from options (#858)
  • Added missing semicolon (#882)
  • Add extension to .eslintrc (#876)
• 2.19.0 - 2018-10-08
  
  • Removed newline after Options and Commands headers (#864)
  • Bugfix - Error output (#862)
  • Fix to change default value to string (#856)
• 2.18.0 - 2018-09-07
• 2.17.1 - 2018-08-07
• 2.17.0 - 2018-08-04
• 2.16.0 - 2018-06-29

from commander GitHub release notes

Commit messages

Package name: commander

• 6b8499b Version bump 2.20.3 (#1075)
• a591f87 Support Node.js 0.10 (Revert #1059) (#1074)
• 48b02f0 Improve 2.x executable subcommand tracking and update dependencies (#1059)
• 3e8bf54 Merge pull request #946 from abetomo/version_bump_2.20.0
• 1ffcbef version bump 2.20.0
• 50922d8 Merge pull request #935 from MarshallOfSound/fix-deep-sym-link-resolution
• 994d24d fix: resolve symbol links until their are no more symbolic links
• 291fc04 Merge pull request #930 from kira1928/update-index.d.ts
• a469137 some more fix.
• a679949 Refine variable name. Use strict type definition instead of
• e31bb8a Update index.d.ts
• 4542306 Merge pull request #924 from ForJing/patch-1
• 77bb580 Update Readme.md
• 68545af Remove --save option as it isn't required anymore
• 82d0d0a fix url :construction:
• cec57f5 Add link to the license file :+1:
• d240081 Update Readme.md
• 03f7d38 Added example of receiving args from options
• 27aeac1 Merge pull request #882 from reviewher/patch-1
• f054510 Added missing semicolon
• 700130e Add extension to .eslintrc
• 78b7dbd version bump 2.19.0
• 6aafa20 prefixed error messages with "error:"
• 6c0c1f6 removed newline above and below errors

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[CLAassistant]

Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
_{You have signed the CLA already but the status is still pending? Let us recheck it.}

[sophos7]

The project no longer uses this dependency.