[github.com/zalando/skipper] Query predicate bypass in Zalando Skipper

In Zalando Skipper before 0.13.218, a query predicate could be bypassed via a prepared request.

References

• https://nvd.nist.gov/vuln/detail/CVE-2022-34296
• https://github.com/zalando/skipper/releases/tag/v0.13.218
• https://github.com/zalando/skipper/pull/2028
• https://github.com/advisories/GHSA-qx2j-85q5-ffp8