[Snyk] Upgrade qs from 6.10.3 to 6.13.0

[Gutts-n]

Snyk has created this PR to upgrade qs from 6.10.3 to 6.13.0.

As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.

✨ Snyk has automatically assigned this pull request, set who gets assigned.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 10 versions ahead of your current version.
• The recommended version was released 3 months ago, on 2024-08-01.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Prototype Pollution SNYK-JS-DOMPURIFY-7984421	629/1000 Why? Has a fix available, CVSS 8.3	No Known Exploit
	Template Injection SNYK-JS-DOMPURIFY-6474511	629/1000 Why? Has a fix available, CVSS 8.3	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: qs

• 6.13.0 - 2024-08-01
  

  v6.13.0

• 6.12.3 - 2024-07-08
  

  v6.12.3

• 6.12.2 - 2024-07-01
  

  v6.12.2

• 6.12.1 - 2024-04-12
  

  v6.12.1

• 6.12.0 - 2024-03-06
  

  v6.12.0

• 6.11.2 - 2023-05-15
  

  v6.11.2

• 6.11.1 - 2023-03-06
  

  v6.11.1

• 6.11.0 - 2022-06-27
  

  v6.11.0

• 6.10.5 - 2022-06-06
  

  v6.10.5

• 6.10.4 - 2022-06-06
  

  v6.10.4

• 6.10.3 - 2022-01-11

from qs GitHub release notes

Commit messages

Package name: qs

• 5cf516c v6.13.0
• 8d56df2 [New] `parse`: add `strictDepth` option
• c9a6694 [Tests] use `npm audit` instead of `aud`
• f90cc35 v6.12.3
• 1bf9f7a [Fix] `parse`: properly account for `strictNullHandling` when `allowEmptyArrays`
• 7ebf48b [meta] fix changelog indentation
• d0dff11 v6.12.2
• f0b8d03 [Dev Deps] update `@ ljharb/eslint-config`, `object-inspect`, `tape`
• 81835ff [Fix]: `parse`: parse encoded square brackets
• db47dcc [readme] add CII best practices badge
• 29dda21 v6.12.1
• 7e18298 [Fix] `parse`: Disable `decodeDotInKeys` by default to restore previous behavior
• fd3cd7a [Tests] increase coverage
• 6d7df02 [Performance] `utils`: Optimize performance under large data volumes, reduce memory usage, and speed up processing
• 572533c [Refactor] `utils`: use `+=`
• c4d29f3 [meta] add tea.yaml
• 062334a v6.12.0
• f09cffc [meta] make the dist build 50% smaller
• 934dfe8 [meta] run build in prepack, not prepublish
• c8a269f [Tests] `parse`: remove useless tests; add coverage
• 1e04701 [Tests] `stringify`: increase coverage
• e679e12 [Deps] update `side-channel`
• 6799475 [Dev Deps] update `has-override-mistake`
• cc60bbd [Tests] use `mock-property`

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

👩‍💻 Set who automatically gets assigned

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs