[Snyk] Upgrade js-yaml from 3.12.2 to 3.13.1

[snyk-bot]

Snyk has created this PR to upgrade js-yaml from 3.12.2 to 3.13.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 2 versions ahead of your current version.
• The recommended version was released a year ago, on 2019-04-05.

The recommended version fixes:

Severity	Issue	Exploit Maturity
	Arbitrary Code Execution SNYK-JS-JSYAML-174129	No Known Exploit
	Denial of Service (DoS) SNYK-JS-JSYAML-173999	No Known Exploit

Release notes

Package name: js-yaml

• 3.13.1 - 2019-04-05
  

  3.13.1 released

• 3.13.0 - 2019-03-20
  

  3.13.0 released

• 3.12.2 - 2019-02-26
  

  3.12.2 released

from js-yaml GitHub release notes

Commit messages

Package name: js-yaml

• 665aadd 3.13.1 released
• da8ecf2 Browser files rebuild
• b2f9e88 Merge pull request #480 from nodeca/toString
• e18afbf Fix possible code execution in (already unsafe) load()
• 9d4ce5e 3.13.0 released
• f64c673 Browser files rebuild
• a567ef3 Restrict data types for object keys
• 59b6e76 Fix test name

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs