chore(deps-dev): bump snyk from 1.305.0 to 1.450.0

[dependabot-preview]

Bumps snyk from 1.305.0 to 1.450.0.

Release notes

Sourced from snyk's releases.

v1.450.0

Bumps the python plugin to include the following fixes for poetry:

• Stop parser from trying to look up packages not propagated to the lockfile (wheel, distributed, pip, setuptools)
• Stop parser from failing when failing to locate dependency in lockfile and instead log a warning. This could be because of python requirements allowing it in the manifest but not actually installing it and adding a lockfile entry or because of how Poetry treats the use of underscores and hyphens when installing packages
• Reversed PR that introduced swapping underscores in manifest for hyphens in lockfile. This was due to a misunderstanding of how Poetry worked and is remediated by the above.

v1.449.0

Release Notes pending

v1.448.0

Features

• add SARIF support for snyk open-source View

v1.447.0

Features

• iac experimental single k8s file scanning (15f1728)

v1.446.0

Chores

• validate binary release checksums View

v1.445.0

Fixes

• generate sha256 correctly View

v1.444.0

Features

• Auto detect user instructions from image [ f6b2faf ]

v1.443.0

Reverts the git URL in package.json that was preventing installs on some systems snyk/snyk#1615

v1.442.0

Reverted in 1.443.0

Using lerna release

v1.441.0

Reverted in 1.443.0

1.441.0 (2021-02-04)

Bug Fixes

• gradle graceful resolvable configs (ef81907)

... (truncated)

Commits

• 157663f Merge pull request #1628 from snyk/fix/bump-python-plugin-version
• eaaf348 fix: bump python plugin version to include multiple fixes for Poetry
• 128660c Merge pull request #1609 from snyk/feat/update-no-info-to-no-path-found
• c7374f5 Merge pull request #1622 from snyk/feat/open-source-sarif
• a3ec441 feat: add SARIF support for snyk open-source
• 15f1728 Merge pull request #1621 from snyk/feat/iac-experimental-local-exec
• f232cfb feat: iac experimental single k8s file
• c9404ec Merge pull request #1618 from snyk/chore/verify-binary-release-checksums
• 8b17cb7 chore: validate binary release checksums
• e4c5066 Merge pull request #1617 from snyk/fix/create-shasum-under-binary-releases
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

[coveralls]

Coverage remained the same at 84.0% when pulling 8246247 on dependabot/npm_and_yarn/snyk-1.450.0 into fc86d56 on master.

[dependabot-preview]

Superseded by #655.