update third-party dependency

`chokidar@1.7.0` package deep dependents on vulnerable version of `braces@1.8.2` package.

from https://nodesecurity.io/advisories/786
> **Overview**
Versions of braces prior to 2.3.1 are vulnerable to Regular Expression Denial of Service (ReDoS). Untrusted input may cause catastrophic backtracking while matching regular expressions. This can cause the application to be unresponsive leading to Denial of Service.
**Remediation**
Upgrade to version 2.3.1 or higher.
**Resources**
[GitHub Commit
](https://github.com/micromatch/braces/commit/abdafb0cae1e0c00f184abbadc692f4eaa98f451)

yarn audit v1.13.0
low                      : Regular Expression Denial of Service
Package              : braces
Patched in           :  >=2.3.1
Dependency of    : express-reload
Path                     :  express-reload > chokidar > anymatch > micromatch > braces
More info            : https://nodesecurity.io/advisories/786
1 vulnerabilities found - 
Severity: 1 Low


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

update third-party dependency #2

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

update third-party dependency #2

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions