[Snyk] Security upgrade @nx/js from 16.5.0 to 16.9.0

[georgeenciu]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	661/1000 Why? Recently disclosed, Has a fix available, CVSS 7.5	Uncontrolled resource consumption SNYK-JS-BRACES-6838727	No	No Known Exploit
	661/1000 Why? Recently disclosed, Has a fix available, CVSS 7.5	Inefficient Regular Expression Complexity SNYK-JS-MICROMATCH-6838728	No	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: @nx/js

The new version differs by 250 commits.

• e62f0b1 chore(repo): update nx to 16.9.0-rc.1 (#19302)
• 2b84f10 bugfix(react-native): fix run-ios failed on 2nd run (#19287)
• 295ec47 fix(core): do not attempt to publish private npm packages (#19299)
• b0e48a6 chore(repo): update nx to 16.9.0-rc.0 (#19296)
• d1fe398 docs(core): packages to api (#19281)
• 94d8356 fix(vite): provide correct root directory when building a root project (#19298)
• ca85d26 fix(core): unregister in-process ts transpilers when projectGraph is created (#19187)
• 9f0e9c8 chore(core): nx plugin submission nx-gcp-cache (#18172)
• e9eb10f chore(core): nx plugin submission @ jnxplus/nx-maven (#19081)
• f2edb29 chore(core): remove deprecated plugins from approved-plugins.json file (#19082)
• c18c0b2 feat(misc): prepend cwd to directory in project generators when using as-provided format (#19227)
• 78f7f9f fix(nextjs): Add missing env to base Nx Env (#19201)
• 903c4fe fix(js): update generated .swcrc file to align with @ swc/[email protected] (#19214)
• 75890f5 chore(repo): remove dep from nx-dev-e2e -> devkit (#19288)
• d8261b4 fix(repo): add native packages to the release group (#19289)
• 91b1451 fix(core): ensure target-only argument is rewritten correctly to be forwarded (#17971)
• 5545ffb feat(core): allow multiple targets in show projects commmand (#18506)
• 57dc105 chore(core): prepare Angular specific error only before throwing it (#18904)
• 82fb209 fix(nx-plugin): pass full context into parseTargetString (#19154)
• 1aef24b chore(angular): move parseTargetString to pass executor context (#19133)
• d4a6d32 feat(core): run createDependencies plugins concurrently (#19176)
• 90c811a Revert "chore(repo): increate npm fetch retires count and timeout (Create training events lib #1… (#19283)
• ed0456e chore(repo): increate npm fetch retires count and timeout (#19191)
• 6327fab chore(repo): dogfood nx release commands (#19237)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Uncontrolled resource consumption