[Snyk] Upgrade zotero-plugin from 1.2.3 to 1.4.0

[retorquere]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade zotero-plugin from 1.2.3 to 1.4.0.

 :information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

- The recommended version is **2 versions** ahead of your current version. - The recommended version was released **2 days ago**, on 2022-04-12. The recommended version fixes: Severity | Issue | PriorityScore (*) | Exploit Maturity | :-------------------------:|:-------------------------|-------------------------|:------------------------- | Directory Traversal
[SNYK-JS-MOMENT-2440688](https://snyk.io/vuln/SNYK-JS-MOMENT-2440688) | **446/1000**
**Why?** Recently disclosed, CVSS 7.5 | No Known Exploit | Prototype Pollution
[SNYK-JS-MINIMIST-2429795](https://snyk.io/vuln/SNYK-JS-MINIMIST-2429795) | **446/1000**
**Why?** Recently disclosed, CVSS 7.5 | No Known Exploit (*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: zotero-plugin

• 1.4.0 - 2022-04-12
• 1.3.0 - 2022-04-12
• 1.2.3 - 2022-03-02
  

  1.2.3

    </li>
  </ul>
  from <a href="https://snyk.io/redirect/github/retorquere/zotero-plugin/releases">zotero-plugin GitHub release notes</a>

Commit messages

Package name: zotero-plugin

• 7c066a8 1.4.0
• a4bfab6 1.3.0
• 2daee5a ncu
• bd89c1f Update README.md
• ad647fd release workflow
• 3b87298 release workflow

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs