Override semver version to 7.5.3 GHSA-c2qf-rxjj-qqgw/CVE-2022-25883

dist/index.js

@@ -4473,6 +4473,10 @@ function copyFile(srcFile, destFile, force) {
         if (range.includes('||')) {
             return range.split('||').some((r) => satisfies(version, r));
         }
+        else if (range.includes(' - ')) {
+            const [a, b] = range.split(' - ', 2);
+            return satisfies(version, `>=${a} <=${b}`);
+        }
         else if (range.includes(' ')) {
             return range
                 .trim()
@@ -4554,6 +4558,7 @@ function copyFile(srcFile, destFile, force) {
         '=': [0],
         '<=': [-1, 0],
         '<': [-1],
+        '!=': [-1, 1],
     };
     const allowedOperators = Object.keys(operatorResMap);
     const assertValidOperator = (op) => {

package.json

@@ -37,15 +37,15 @@
     "@actions/core": "^1.10.0",
     "@actions/exec": "^1.1.1",
     "@actions/io": "^1.1.3",
-    "compare-versions": "^6.0.0-rc.1"
+    "compare-versions": "^6.0.0-rc.2"
   },
   "devDependencies": {
     "@types/jest": "^29.5.2",
-    "@types/node": "^20.3.1",
+    "@types/node": "^20.3.3",
-    "@typescript-eslint/eslint-plugin": "^5.60.0",
+    "@typescript-eslint/eslint-plugin": "^5.60.1",
-    "@typescript-eslint/parser": "^5.60.0",
+    "@typescript-eslint/parser": "^5.60.1",
     "@vercel/ncc": "^0.36.1",
-    "eslint": "^8.43.0",
+    "eslint": "^8.44.0",
     "eslint-config-prettier": "^8.8.0",
     "eslint-plugin-import": "^2.27.5",
     "eslint-plugin-jest": "^27.2.2",
@@ -55,8 +55,11 @@
     "nock": "^13.3.1",
     "prettier": "^2.8.8",
     "simple-git-hooks": "^2.8.1",
-    "ts-jest": "^29.1.0",
+    "ts-jest": "^29.1.1",
-    "typescript": "^5.1.3"
+    "typescript": "^5.1.6"
+  },
+  "overrides": {
+    "semver": "7.5.3"
   },
   "bugs": {
     "url": "https://github.com/shivammathur/setup-php/issues"