There's a merged pull request on the void-packages repository

cflow: update to 1.7.
https://github.com/void-linux/void-packages/pull/36032

Description:
<!-- Uncomment relevant sections and delete options which are not applicable -->

fixes:
- [CVE-2019-16165](https://nvd.nist.gov/vuln/detail/CVE-2019-16165)
- [CVE-2019-16166](https://nvd.nist.gov/vuln/detail/CVE-2019-16166)
- [CVE-2020-23856](https://nvd.nist.gov/vuln/detail/CVE-2020-23856)

#### Testing the changes
- I tested the changes in this PR: **YES**

<!--
#### New package
- This new package conforms to the [quality requirements](https://github.com/void-linux/void-packages/blob/master/Manual.md#quality-requirements): **YES**|**NO**
-->

<!-- Note: If the build is likely to take more than 2 hours, please [skip CI](https://github.com/void-linux/void-packages/blob/master/CONTRIBUTING.md#continuous-integration)
and test at least one native build and, if supported, at least one cross build.
Ignore this section if this PR is not skipping CI.
-->
<!-- 
#### Local build testing
- I built this PR locally for my native architecture, (ARCH-LIBC)
- I built this PR locally for these architectures (if supported. mark crossbuilds):
  - aarch64-musl
  - armv7l
  - armv6l-musl
-->