[Snyk] Fix for 1 vulnerabilities

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-COOKIEJAR-3149984	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: superagent

The new version differs by 250 commits.

• fda9b5e v2.0.0
• 2429a1e 2.0.0-alpha.3
• 2ae9281 Catch errors thrown during end event
• 536e9a6 Merge pull request Editor: add preview_URL to post APIs Automattic/wp-calypso#989 from focusaurus/doc-electron-browser
• d0c57f1 document browser version in electron
• b3ef32c Merge pull request Reader: link user's name to their blog Automattic/wp-calypso#981 from visionmedia/pipeevents
• b24ab0b Emit response event when piping
• 8ae7380 Exclude bower.json from npm to avoid generating a confusing package
• 6b0e527 Alpha 2
• b47a011 Backwards compatibility with superagent-mock
• 984fbc6 Merge remote-tracking branch 'origin/headredirects'
• d351b1c Skip redirect test that exposes bug in IE
• 94f6f0a Merge pull request Reader: make "in-stream" comment bubble more useful Automattic/wp-calypso#974 from visionmedia/formserialize
• 6ff9350 Browsers are broken
• 1d8dc66 Localtunnel timeouts
• 61401a7 Fix DISALLOW_FILE_EDIT prevents manage plugins from working Automattic/wp-calypso#669
• 93a1cef Move method
• e302db1 Split test
• 62a077b Reused server for redirect tests
• b29520d Catch assertion errors to report them properly
• d7c3daa Redundant
• 781580f Moved tests
• 4ecd3f0 Serialize nested objects same way as node
• 2097cd2 Lint

See the full diff

Package name: wpcom-xhr-request

The new version differs by 56 commits.

• 2c5d870 Release 1.0.0
• e982315 test: add media files
• c16f1a3 test: add POSTs tests
• 5621425 pgk: 1.0.0-beta.4
• 712186a test: add pass `headers` to request test
• b628f50 test: fix nox-passed tests
• f445109 core: refact core using ES2015
• ddaeef4 test: add oauth tests
• abeee01 util: add token stuff
• a7a4ad5 pkg: bump 1.0.0-beta.3
• 23e4c3c core: make a copy of origin req parameters
• 0dd01e7 pkg: update package main file
• 35a356e Readme: update doc file
• 7f3d2c9 make: add `examples` rule
• 86f60b1 test: add REST-API and WP-API tests
• 8b877cc core: handling http envelope mode
• 2408ab2 add circle integration
• f6f34b0 ignore bundle example file
• 9dddfc3 do not rev bundle file
• a63f7b1 pkg: compile in prepublish. Set npm pack files
• 94e2f27 compile bundle only for examples purposes
• bc422aa ignoring build/ folder
• 04e9d80 core: ES6ify
• 99a0eb2 set eslint rules

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)