[Snyk] Security upgrade analyze-css from 0.12.5 to 0.12.6

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	591/1000 Why? Recently disclosed, Has a fix available, CVSS 5.9	Denial of Service SNYK-JS-NODEFETCH-674311	No	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: analyze-css

The new version differs by 21 commits.

• 7ed3ef5 0.12.6
• 9762634 Merge pull request #149 from macbre/update-prefixes
• 45203ee Travis: test under Node.js 10.x
• acf3ef4 Update prefixes data
• 7f11277 Merge pull request #148 from macbre/update-dependencies
• 8b9804d Use a jshint fork to fix security issues
• 0a07c3b Update dependencies
• cefb6ff Merge pull request #147 from macbre/security
• 0a17360 Update prefixes rules
• 4188494 Update dependencies
• 73f667d Merge pull request #146 from macbre/update-dependencies
• 7069989 Update dependencies
• 1911bc4 Merge pull request #145 from macbre/update-dependencies
• da5b004 Commit package-lock.json file
• 33edb61 Update dependencies
• 449ba8f Merge pull request #144 from macbre/update-dependencies
• 0a40eeb Merge branch 'devel' into update-dependencies
• 800c97e Update dependencies
• 86c56b9 Merge pull request #143 from macbre/update-dependencies
• 27eedf1 Update dependencies + use trusty on TravisCI
• ee04cfe Add snyk.io bagde

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

[ci-reporter]

The build is failing

✨ Good work on this PR so far! ✨ Unfortunately, the Travis CI build is failing as of eab479e. Here's the output:

npm test

> jstransformer-analyze-css@0.3.0 test /home/travis/build/jstransformers/jstransformer-analyze-css
> test-jstransformer

 • analyze-css
   ✓ transform has an output format (0ms)
   Output:	"{\n  \"generator\": \"analyze-css v0.12.6\",\n  \"metrics\": {\n    \"base64Length\": 0,\n    \"redundantBodySelectors\": 0,\n    \"redundantChildNodesSelectors\": 0,\n    \"colors\": 0,\n    \"comments\": 0,\n    \"commentsLength\": 0,\n    \"complexSelectors\": 0,\n    \"duplicatedSelectors\": 0,\n    \"duplicatedProperties\": 0,\n    \"emptyRules\": 0,\n    \"expressions\": 0,\n    \"oldIEFixes\": 0,\n    \"imports\": 0,\n    \"importants\": 1,\n    \"mediaQueries\": 0,\n    \"notMinified\": 0,\n    \"multiClassesSelectors\": 0,\n    \"parsingErrors\": 0,\n    \"oldPropertyPrefixes\": 0,\n    \"propertyResets\": 0,\n    \"qualifiedSelectors\": 0,\n    \"specificityIdAvg\": 0,\n    \"specificityIdTotal\": 0,\n    \"specificityClassAvg\": 1,\n    \"specificityClassTotal\": 1,\n    \"specificityTagAvg\": 0,\n    \"specificityTagTotal\": 0,\n    \"selectors\": 1,\n    \"selectorLengthAvg\": 1,\n    \"selectorsByAttribute\": 0,\n    \"selectorsByClass\": 1,\n    \"selectorsById\": 0,\n    \"selectorsByPseudo\": 0,\n    \"selectorsByTag\": 0,\n    \"length\": 27,\n    \"rules\": 1,\n    \"declarations\": 1\n  },\n  \"offenders\": {\n    \"importants\": [\n      {\n        \"message\": \".foo {margin: 0 !important}\",\n        \"position\": {\n          \"start\": {\n            \"line\": 1,\n            \"column\": 7\n          },\n          \"end\": {\n            \"line\": 1,\n            \"column\": 27\n          }\n        }\n      }\n    ]\n  }\n}"
   Expected:	"{\n  \"generator\": \"analyze-css v0.12.5\",\n  \"metrics\": {\n    \"base64Length\": 0,\n    \"redundantBodySelectors\": 0,\n    \"redundantChildNodesSelectors\": 0,\n    \"colors\": 0,\n    \"comments\": 0,\n    \"commentsLength\": 0,\n    \"complexSelectors\": 0,\n    \"duplicatedSelectors\": 0,\n    \"duplicatedProperties\": 0,\n    \"emptyRules\": 0,\n    \"expressions\": 0,\n    \"oldIEFixes\": 0,\n    \"imports\": 0,\n    \"importants\": 1,\n    \"mediaQueries\": 0,\n    \"notMinified\": 0,\n    \"multiClassesSelectors\": 0,\n    \"parsingErrors\": 0,\n    \"oldPropertyPrefixes\": 0,\n    \"propertyResets\": 0,\n    \"qualifiedSelectors\": 0,\n    \"specificityIdAvg\": 0,\n    \"specificityIdTotal\": 0,\n    \"specificityClassAvg\": 1,\n    \"specificityClassTotal\": 1,\n    \"specificityTagAvg\": 0,\n    \"specificityTagTotal\": 0,\n    \"selectors\": 1,\n    \"selectorLengthAvg\": 1,\n    \"selectorsByAttribute\": 0,\n    \"selectorsByClass\": 1,\n    \"selectorsById\": 0,\n    \"selectorsByPseudo\": 0,\n    \"selectorsByTag\": 0,\n    \"length\": 27,\n    \"rules\": 1,\n    \"declarations\": 1\n  },\n  \"offenders\": {\n    \"importants\": [\n      {\n        \"message\": \".foo {margin: 0 !important}\",\n        \"position\": {\n          \"start\": {\n            \"line\": 1,\n            \"column\": 7\n          },\n          \"end\": {\n            \"line\": 1,\n            \"column\": 27\n          }\n        }\n      }\n    ]\n  }\n}"
   ✗ analyze-css.renderAsync() (29ms)

     AssertionError [ERR_ASSERTION]: '{\n  "generator": "analyze-css v0.12.6",\n  "metrics": {\n    "base64Length": 0,\n    "redundantBodySelectors": 0,\n    "redund === '{\n  "generator": "analyze-css v0.12.5",\n  "metrics": {\n    "base64Length": 0,\n    "redundantBodySelectors": 0,\n    "redund
         at assertEqual (/home/travis/build/jstransformers/jstransformer-analyze-css/node_modules/test-jstransformer/index.js:10:12)
         at checkOutput (/home/travis/build/jstransformers/jstransformer-analyze-css/node_modules/test-jstransformer/index.js:103:9)
         at transform.renderAsync.then.output (/home/travis/build/jstransformers/jstransformer-analyze-css/node_modules/test-jstransformer/index.js:147:11)
         at <anonymous>
         at process._tickCallback (internal/process/next_tick.js:189:7)

Total duration 35ms
tests failed

I'm sure you can fix it! If you need help, don't hesitate to ask a maintainer of the project!

---

This comment was automagically generated by ci-reporter. If you see a problem, open an issue here.