Fix many JS vulns, fix tests

[Stephen2]

• fix: lint problem
• fix: ignore malformed JSON file for FlowJS
• fix: add missing @types/jest package
• chore: update TypeScript version
• chore: update all eslint deps
• chore: update all Jest deps
• chore: replace Jest config with jest.config.ts
• fix: make root Jest tests ignore Example folders
• chore: update css-select dep
• chore: update css-tree to latest 1.x version
• chore: upgrade ansi-regex to close JS vuln
• chore: upgrade ejs to close JS vuln
• chore: upgrade async to close JS vuln
• chore: upgrade simple-plist to close JS vuln

Summary

Upgrades a ton of dependencies, closes JS vulns, gets lint & test working as intended. Only barely touches application code, due to TypeScript version upgrade and prettier upgrade.

Also makes yarn run test work again, by ignoring Example folders which aren't working right now.

Test Plan

I ensured that tsc, lint and test pass

[Stephen2]

NOTE: all application code changes are as a result of yarn run lint --fix and not manually performed

[Stephen2]

Need this library to be updated so I can close JS vulns that are blocking our build pipeline

@WoLewicki ?

[Stephen2]

I've forked this project to https://github.com/MeritOpenSource/react-native-svg and will be looking into how to get this publishing to npm

The goal will be to keep this project on life support and at least close vulns and keep deps updated

Not necessary. Maintainer is busy but responsive

[WoLewicki]

Could you briefly explain why all those newly added libs are necessary? I can see that @babel/plugin-syntax-flow, @babel/plugin-transform-react-jsx etc. were added. If there is a good reason behind it, I think it is probably ready to be merged then.

[Stephen2]

Sure, good question.

After updating the eslint related packages that already exist, yarn shows warnings about peer deps:

warning " > [email protected]" has unmet peer dependency "@babel/plugin-syntax-flow@^7.14.5".
warning " > [email protected]" has unmet peer dependency "@babel/plugin-transform-react-jsx@^7.14.9".
warning " > [email protected]" has unmet peer dependency "@babel/core@^7.0.0".

So to resolve these warnings I've installed the peer deps as well using yarn add -D

[WoLewicki]

Ok, the last thing that I am afraid of is updating the css-select and css-tree deps since it will directly affect the users of the library. Is it fixing any vulnerabilities? If not, maybe it should be added in some other PR in order not to mix things for lib developers with those of lib users. Wdyt?

[Stephen2]

Updating css-select is important to close vulnerability (this is the original reason I need to make this PR)

GHSA-rp65-9cf3-cjxr

The dep tree is:
react-native-svg>css-select>nth-check

[Stephen2]

css-tree we could undo, but I was thinking if tests pass why not update it while I'm doing all this other work

[Stephen2]

@WoLewicki please let me know your final decision here.

[WoLewicki]

Sorry for the delay, I think we can do it here, so it is ready to be merged 🎉 Thanks for your contribution!