[Snyk] Security upgrade inquirer from 7.3.3 to 8.2.7

[cc-prodsec]

Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

• package.json
• package-lock.json

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Directory Traversal SNYK-JS-TMP-16881240	828

Breaking Change Risk

Notice: This assessment is enhanced by AI.

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Directory Traversal

[cc-prodsec]

This is a major version upgrade from inquirer v7 to v8. While the library has introduced significant breaking changes in v9 (by becoming a pure ESM module), this specific upgrade to v8.2.7 is considered low risk as it predates that change.

Key Information:

• The inquirer package is now considered legacy, and the maintainers recommend migrating to the new @inquirer/prompts for new features and active development. [4]
• This version (v8) does not require a switch to ES module import syntax; you can continue using require('inquirer'). The mandatory switch to ESM occurs in v9. [5]
• The upgrade to v8.2.7 primarily includes bug fixes and feature additions without documented breaking API changes from v7.

Recommendation:
No immediate action is required for this upgrade. However, for future development, your team should plan a migration from the legacy inquirer package to the new @inquirer/prompts packages as recommended by the maintainers. [4]

Notice 🤖: This content was augmented using artificial intelligence. AI-generated content may contain errors and should be reviewed for accuracy before use.

[cc-prodsec]

✅ Snyk checks have passed. No issues have been found so far.

Status	Scan Engine	Critical	High	Medium	Low	Total (0)
✅	Open Source Security	0	0	0	0	0 issues
✅	Licenses	0	0	0	0	0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.