Update serve packages flagged by snyk

[jaffrepaul]

No description provided.

[MikeMcC399]

Hi @jaffrepaul

I noticed there is a breaking change in serve v13 which changes the default port from 5000 to 3000. Any tests previously relying on the default 5000 would need to add the parameter -p 5000 to the serve command line in the corresponding package.json.

start-and-yarn-workspaces examples are using yarn so they would need the yarn.lock updating. They currently have yarn classic v1 lock files.

(I checked, and major projects, like React and Angular are also still using yarn classic.)

[MikeMcC399]

@jaffrepaul

Just to check that my assessment was right, I ended up fixing the issues here, so if you'd like a PR piggy-backed on your draft PR please let me know.

Here are the differences:
update-snyk-deps...MikeMcC399:github-action:fix/update-snyk-deps

[MikeMcC399]

I've submitted PR #682 to fix this one. My PR fails the snyk security check. I don't know why though, since I can't view the details, not being a member of the cypress-io organization.

[MikeMcC399]

@jaffrepaul

• You'll need PR Resolve markdown-link-check forbidden with renovate app link #690 to get the markdown issue fixed. Adding renovate into the list doesn't help since it's a different root cause.

[MikeMcC399]

I suggest you also revert 3805150 with the ineffective whitelisting.

[jaffrepaul]

Thanks @MikeMcC399 adding it to the whitelist was a simple prayer in the interest of time. Appreciate the follow up here!