[CVE-2020-7753] Update remark to 13.0.0

[Wawrzyn321]

I was tasked with resolving a vulnerability coming from trim package. Dependency chain is as follows: trim <- remark-parse <- remark <- react-styleguidist<- our repo.

remark-parse in version 9.0.0 removes the trim completely, and to have remark-parse in 9.0.0, we need to bump the remark to 13.0.0.

Unfortunately, react-styleguidist fixes the remark to ^11.0.1.

Because of the fact that trim's vulnerable code won't be used anyway in modern browsers, I've managed to reduce the vulnerability from high to low, but it would be better if we could get rid of trim altogether - hence I'm opening an issue on your side.

[sapegin]

Feel free to send a pull request with an update 👾

[poteirard]

PR created

[styleguidist-bot]

🎉 This issue has been resolved in version 11.1.2 🎉

The release is available on:

• npm package (@latest dist-tag)
• GitHub release

Your semantic-release bot 📦🚀

[Wawrzyn321]

Thank you guys!