[Snyk] Upgrade cheerio from 0.19.0 to 0.22.0

[snyk-bot]

Snyk has created this PR to upgrade cheerio from 0.19.0 to 0.22.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 2 versions ahead of your current version.
• The recommended version was released 5 years ago, on 2016-08-23.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Prototype Pollution SNYK-JS-LODASH-73638	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-608086	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-450202	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Proof of Concept
	Command Injection SNYK-JS-LODASH-1040724	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Proof of Concept
	Prototype Pollution npm:lodash:20180130	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-73639	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-590103	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	No Known Exploit
	Prototype Pollution SNYK-JS-LODASH-567746	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: cheerio

• 0.22.0 - 2016-08-23
• 0.20.0 - 2016-02-01
• 0.19.0 - 2015-03-21

from cheerio GitHub release notes

Commit messages

Package name: cheerio

• 35c4917 Release 0.21.0
• 1d2e8a7 Return undefined in .prop if given an invalid element or tag (#880)
• df55c93 Merge pull request #884 from cheeriojs/readme-cleanup
• bbceb09 readme updates
• 010b718 Merge pull request #881 from piamancini/patch-1
• 4997e70 Added backers and sponsors from OpenCollective
• 4ccb41b Use jQuery from the jquery module in benchmarks (#871)
• 54359c9 Document, test, and extend static `$.text` method (#855)
• c6612f3 Fix typo on calling _.extend (#861)
• ed60b34 0.21.0
• 79d4e5e Update versions (#870)
• e7d18af Use individual lodash functions (#864)
• e65ad72 Added `.serialize()` support. Fixes #69 (#827)
• df39f33 Update Readme.md (#857)
• 7b59afb add extension for JSON require call
• d0551dc remove gittask badge
• f500197 Merge pull request #672 from underdogio/dev/checkbox.radio.values.sqwished
• 046071a Added default value for checkboxes/radios
• c3ec1cd Release 0.20.0
• ef848ca Add coveralls badge, remove link to old report
• dbcbe90 Merge pull request #808 from leifhanack/lodash4
• c04ead1 Merge pull request #668 from rwaldin/prop-method
• b5531bb Merge pull request #671 from twolfson/dev/fallback.select.content.sqwished
• 9d98bd7 Merge pull request #704 from Rycochet/master

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs