[Snyk] Security upgrade jszip from 3.6.0 to 3.7.0

[twilio-product-security]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	551/1000 Why? Recently disclosed, Has a fix available, CVSS 5.3	Denial of Service (DoS) SNYK-JS-JSZIP-1251497	No	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: jszip

The new version differs by 9 commits.

• e5b3f0d 3.7.0
• e88ba4b Update for version 3.7.0
• 9046487 Disable proto assert that fails in browsers
• 6d029b4 Merge pull request #766 from MichaelAquilina/fix/files-null-prototype
• bb38812 Ensure prototype isn't modified by zip file
• d024c22 test: Add test case for loading zip filenames which shadow method names
• 2235749 fix: Use a null prototype object for this.files
• b7f472d Merge pull request #757: Update license to be valid spdx identifier
• a311039 update license to be valid spdx identifier

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

[philnash]

@bochoi-twlo This is a dependency of your template. Is this update ok? It should probably be updated in the template's package.json too.

[bochoi-twlo]

I'm good with this change.