[Snyk] Security upgrade glob from 9.3.2 to 12.0.0

[SKannaniOS]

Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

• package.json
• package-lock.json

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-15309438	710

Breaking Change Risk

Notice: This assessment is enhanced by AI.

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)

[SKannaniOS]

This is a major version upgrade from v9 to v12 that includes a complete API rewrite, introducing significant breaking changes.

Key Breaking Changes:

• Promise-Based API: The library has shifted from a callback-based API to a Promise-based one. Code using callbacks will need to be refactored to use async/await or .then().
• Node.js Support: Support for Node.js versions below 16 has been dropped.
• API and Class Changes:
  • Exported function names have been changed.
  • The Glob class is no longer an event emitter and its constructor now requires an options object (e.g., {}).
  • Several options have been removed, including silent, strict, nonull, nounique, and fs.
• Path Separators: The backslash \ is now exclusively an escape character. Glob patterns must use the forward-slash / as a path separator, even on Windows.

Recommendation: This upgrade requires significant code refactoring. Developers must review all usages of glob and update them to the new Promise-based API, new function names, and updated options. Thorough testing is required before merging.

Source: Official Changelog

Notice 🤖: This content was augmented using artificial intelligence. AI-generated content may contain errors and should be reviewed for accuracy before use.

[coderabbitai]

Important

Review skipped

Ignore keyword(s) in the title.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Use the checkbox below for a quick retry:

• 🔍 Trigger review

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch snyk-fix-9777b56564a8976c7a1781bba6657e27

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}