[Snyk] Upgrade resolve from 1.7.0 to 1.22.11

[snyk-io]

Snyk has created this PR to upgrade resolve from 1.7.0 to 1.22.11.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 40 versions ahead of your current version.

• The recommended version was released 6 months ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHPARSE-1077067	63	Proof of Concept

Release notes

Package name: resolve

• 1.22.11 - 2025-10-20
  
  • [Refactor] hoist regex expressions for efficiency (#336)
  • [meta] Fix broken repository URL in package.json (#334)
  • [meta] add threat model
  • [meta] gitignore coverage output
  • [meta] add IRP
  • [Deps] update is-core-module
  • [actions] set proper permissions
  • [Tests] install npm 5 before npm 6 in node 7 on windows
  • [Dev Deps] update @ ljharb/eslint-config, array.prototype.map
• 1.22.10 - 2024-12-19
  
  • [meta] ensure list-export fixtures are not published
  • [meta] add missing engines.node
• 1.22.9 - 2024-12-13
  
  • [Deps] update is-core-module
  • [Dev Deps] update @ ljharb/eslint-config, array.prototype.map, npmignore, tape
  • [actions] split out node 10-20, and 20+
  • [Tests] replace aud with npm audit
• 1.22.8 - 2023-10-10
  
  • [Tests] rename innocent test project to avoid flawed security scanners
  • [Tests] skip some tests for a broken require.resolve in node v8.9, v9.0-v9.2
• 1.22.7 - 2023-10-10
  
  • [Tests] avoid publishing "malformed package.json" test to avoid flawed security scanners
• 1.22.6 - 2023-09-15
  
  • [Fix] allow npx resolve to work (#316)
  • [actions] use reusable rebase action
• 1.22.5 - 2023-09-14
  
  • [Fix] fix npx resolve by handling symlinks (#315)
  • [Dev Deps] update array.prototype.map
• 1.22.4 - 2023-08-04
  
  • Revert "[Refactor] deprecated lib/core.js now uses data from is-core-module also"
  • [Deps] update is-core-module
  • [Dev Deps] update @ ljharb/eslint-config, aud, semver, tape
  • [meta] commit published core.json data
• 1.22.3 - 2023-04-14
  
  • [Refactor] deprecated lib/core.js now uses data from is-core-module also
  • [Deps] update is-core-module
• 1.22.2 - 2023-04-05
• 1.22.1 - 2022-06-17
• 1.22.0 - 2022-01-22
• 1.21.1 - 2022-01-21
• 1.21.0 - 2022-01-03
• 1.20.0 - 2021-02-11
• 1.19.0 - 2020-11-10
• 1.18.1 - 2020-10-19
• 1.18.0 - 2020-10-19
• 1.17.0 - 2020-04-22
• 1.16.1 - 2020-04-17
• 1.16.0 - 2020-04-15
• 1.15.1 - 2020-02-05
• 1.15.0 - 2020-01-22
• 1.14.2 - 2020-01-07
• 1.14.1 - 2019-12-19
• 1.14.0 - 2019-12-18
• 1.13.1 - 2019-11-26
• 1.13.0 - 2019-11-25
• 1.12.3 - 2019-11-26
• 1.12.2 - 2019-11-22
• 1.12.1 - 2019-11-22
• 1.12.0 - 2019-08-01
• 1.11.1 - 2019-06-03
• 1.11.0 - 2019-05-15
• 1.10.1 - 2019-04-24
• 1.10.0 - 2019-01-21
• 1.9.0 - 2018-12-17
• 1.8.1 - 2018-06-17
• 1.8.0 - 2018-06-15
• 1.7.1 - 2018-04-12
• 1.7.0 - 2018-04-07

from resolve GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[snyk-io]

✅ Snyk checks have passed. No issues have been found so far.

Status	Scan Engine	Critical	High	Medium	Low	Total (0)
✅	Open Source Security	0	0	0	0	0 issues
✅	Licenses	0	0	0	0	0 issues
✅	Code Security	0	0	0	0	0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.