[Snyk] Security upgrade azure-storage from 1.4.0 to 2.10.7

[skmezanul]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	858/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 9.3	Authentication Bypass SNYK-JS-HAWK-6969142	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: azure-storage

The new version differs by 250 commits.

• 30a84ff Merge pull request #711 from EmmaZhu/readme
• 9c91937 Remove details about of the readme to only redirect to latest storage JS SDKs and indicate that the package is deprecated.
• 1f29b33 Merge pull request #708 from EmmaZhu/migrationguide
• dc4a53b Add migration guide link into readme.
• a1d23d4 Merge pull request #707 from ramya-rao-a/patch-4
• f40c22d Indicate that azure-storage is legacy package
• 2571d0f Merge pull request #705 from EmmaZhu/dependencies
• 3eaa32a Update dependency mark to make it use more recent version automatically.
• 34aabd8 Merge pull request #706 from ramya-rao-a/patch-2
• 2e530df Bring more attention to the note on newer packages
• ad8472f Merge pull request #702 from EmmaZhu/master
• ddc7e8b Upgrade json-schema to 0.4.0. fixed an issue where customized retry interval doesn't take effact.
• 7a42c7b Merge pull request #699 from Azure/dependabot/npm_and_yarn/validator-13.7.0
• 5c5f836 Bump validator from 13.6.0 to 13.7.0
• c422631 Merge pull request #695 from EmmaZhu/validator
• cf37807 Update package version to 2.10.5
• 35676b4 Upgrade validator 13.6.0.
• c2656be Merge pull request #684 from Azure/dependabot/npm_and_yarn/lodash-4.17.21
• d813bde Merge pull request #690 from Azure/dependabot/npm_and_yarn/postcss-7.0.36
• 58c92d1 Bump lodash from 4.17.19 to 4.17.21
• b120cd5 Merge pull request #692 from Azure/dependabot/npm_and_yarn/path-parse-1.0.7
• 0036af3 Merge pull request #682 from Azure/dependabot/npm_and_yarn/handlebars-4.7.7
• 92dac84 Merge pull request #681 from Azure/dependabot/npm_and_yarn/grunt-1.3.0
• 9efb7bc Merge pull request #674 from Azure/dependabot/npm_and_yarn/elliptic-6.5.4

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Note: This is a default PR template raised by Snyk. Find out more about how you can customise Snyk PRs in our documentation.

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Authentication Bypass