feat: big 'ol dependency update & associated fixes

[socket-security[bot]]

New dependency changes detected. Learn more about Socket for GitHub ↗︎

---

🚨 Potential security issues found in this pull request. To accept the risk, merge this PR and you will not be notified again.

Bot Commands

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of package-name@version specifiers. e.g. @SocketSecurity ignore foo@1.0.0 bar@* or ignore all packages with @SocketSecurity ignore-all

• @SocketSecurity ignore puppeteer@20.2.0

📜 Install scripts

Install scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.

Packages should not be running non-essential scripts during install and there are often solutions to problems people solve with install scripts that can be run at publish time instead.

Package	Script field	Source
puppeteer@20.2.0 (upgraded)	postinstall	package.json

Pull request alert summary

Issue	Status
Install scripts	⚠️ 1 issue
Native code	✅ 0 issues
Bin script shell injection	✅ 0 issues
Unresolved require	✅ 0 issues
Invalid package.json	✅ 0 issues
HTTP dependency	✅ 0 issues
Git dependency	✅ 0 issues
Potential typo squat	✅ 0 issues
Known Malware	✅ 0 issues
Telemetry	✅ 0 issues
Protestware/Troll package	✅ 0 issues

---

📊 Modified Dependency Overview:

➕ Added Package	Capability Access	+/- Transitive Count	Publisher
readable-stream@4.4.0	None	+3	matteo.collina

⬆️ Updated Package	Version Diff	Added Capability Access	+/- Transitive Count	Publisher
glob@10.2.4	8.1.0...10.2.4	filesystem, environment	+12/-1	isaacs
puppeteer@20.2.0	14.4.1...20.2.0	shell	+20/-9	google-wombot
rimraf@5.0.0	3.0.2...5.0.0	filesystem, environment	+13/-0	isaacs

[github-actions[bot]]

:tada: This PR is included in version 3.2.0 :tada:

The release is available on:

• npm package (@latest dist-tag)
• GitHub release

Your semantic-release bot :package::rocket: