[Snyk] Upgrade @vscode/vsce from 2.19.0 to 2.29.0

[WontonSam]

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade @vscode/vsce from 2.19.0 to 2.29.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 43 versions ahead of your current version.

• The recommended version was released on a month ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	159	Proof of Concept
	Cross-site Scripting (XSS) SNYK-JS-SERIALIZEJAVASCRIPT-6147607	159	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-WORDWRAP-3149973	159	Proof of Concept
	Incomplete List of Disallowed Inputs SNYK-JS-BABELTRAVERSE-5962462	159	Proof of Concept
	Uncontrolled resource consumption SNYK-JS-BRACES-6838727	159	Proof of Concept
	Improper Verification of Cryptographic Signature SNYK-JS-BROWSERIFYSIGN-6037026	159	No Known Exploit
	Origin Validation Error SNYK-JS-KOACORS-6117545	159	No Known Exploit
	Inefficient Regular Expression Complexity SNYK-JS-MICROMATCH-6838728	159	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	159	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	159	Proof of Concept
	Arbitrary File Write via Archive Extraction (Zip Slip) SNYK-JS-DECOMPRESSTAR-559095	159	Proof of Concept

Release notes

Package name: @vscode/vsce

• 2.29.0 - 2024-06-20
  

  Changes:

  Feature Requests:

  • #1006: Expose enabledApiProposals as a property

  Others:

  • #1007: fix #1006

  This list of changes was auto generated.

• 2.28.1-0 - 2024-06-19
  

  Changes:

  Feature Requests:

  • #1006: Expose enabledApiProposals as a property

  Others:

  • #1007: fix #1006

  This list of changes was auto generated.

• 2.28.0 - 2024-06-19
  

  Changes:

  Feature Requests:

  • #993: Support signing related features

  Others:

  • #1003: Update Dockerfile to use node:18-alpine
  • #997: Dockerfile is out of date with respect to system requirements
  • #1002: fix generate-manifest
  • #1001: Bump braces from 3.0.2 to 3.0.3
  • #998: Bump @ azure/identity from 4.1.0 to 4.2.1
  • #994: Support signing related features

  This list of changes was auto generated.

• 2.27.1-4 - 2024-06-14
  

  Changes:

  • #1003: Update Dockerfile to use node:18-alpine
  • #997: Dockerfile is out of date with respect to system requirements

  This list of changes was auto generated.

• 2.27.1-3 - 2024-06-14
  

  Changes:

  • #1002: fix generate-manifest

  This list of changes was auto generated.

• 2.27.1-2 - 2024-06-12
  

  Changes:

  • #1001: Bump braces from 3.0.2 to 3.0.3

  This list of changes was auto generated.

• 2.27.1-1 - 2024-06-12
  

  Changes:

  • #998: Bump @ azure/identity from 4.1.0 to 4.2.1

  This list of changes was auto generated.

• 2.27.1-0 - 2024-06-07
  

  Changes:

  Feature Requests:

  • #993: Support signing related features

  Others:

  • #994: Support signing related features

  This list of changes was auto generated.

• 2.27.0 - 2024-06-04
  

  Changes:

  Bugs:

  • #981: ERROR No translation found for %abc%

  Others:

  • #991: set pipeline name
  • #990: fix: paths with spaces
  • #988: fix executing sign tool
  • #987: fix sign tool arg
  • #986: enable signing in vsce using script
  • #983: Fix "No translation found" error when executing vsce package

  This list of changes was auto generated.

• 2.26.2-5 - 2024-06-04
  

  Changes:

  • #991: set pipeline name

  This list of changes was auto generated.

• 2.26.2-4 - 2024-06-04
• 2.26.2-3 - 2024-06-03
• 2.26.2-2 - 2024-06-03
• 2.26.2-1 - 2024-06-03
• 2.26.2-0 - 2024-05-22
• 2.26.1 - 2024-05-03
• 2.26.1-1 - 2024-05-03
• 2.26.1-0 - 2024-05-03
• 2.26.0 - 2024-04-19
• 2.25.1-5 - 2024-04-19
• 2.25.1-4 - 2024-04-18
• 2.25.1-3 - 2024-04-18
• 2.25.1-2 - 2024-04-18
• 2.25.1-1 - 2024-04-17
• 2.25.1-0 - 2024-04-15
• 2.25.0 - 2024-04-12
• 2.24.1-5 - 2024-04-12
• 2.24.1-4 - 2024-04-12
• 2.24.1-3 - 2024-04-12
• 2.24.1-2 - 2024-04-11
• 2.24.1-1 - 2024-04-11
• 2.24.1-0 - 2024-04-04
• 2.24.0 - 2024-02-23
• 2.23.1-0 - 2024-02-23
• 2.23.0 - 2024-01-26
• 2.22.1-2 - 2024-01-03
• 2.22.1-1 - 2023-12-18
• 2.22.1-0 - 2023-12-18
• 2.22.0 - 2023-10-28
• 2.21.1 - 2023-09-29
• 2.21.0 - 2023-08-30
• 2.20.1 - 2023-08-04
• 2.20.0 - 2023-07-27
• 2.19.0 - 2023-04-12

from @vscode/vsce GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[google-cla]

Thanks for your pull request! It looks like this may be your first contribution to a Google open source project. Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA).

View this failed invocation of the CLA check for more information.

For the most up to date status, view the checks section at the bottom of the pull request.