[Snyk] Upgrade webpack-dev-server from 3.10.3 to 5.0.4

[WontonSam]

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade webpack-dev-server from 3.10.3 to 5.0.4.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

⚠️ Warning: This PR contains major version upgrade(s), and may be a breaking change.

• The recommended version is 49 versions ahead of your current version.

• The recommended version was released on 4 months ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Prototype Pollution SNYK-JS-AJV-584908	165	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIHTML-1296849	165	Proof of Concept
	Prototype Pollution SNYK-JS-ASYNC-2441827	165	Proof of Concept
	Prototype Pollution SNYK-JS-INI-1048974	165	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SSRI-1246392	165	Proof of Concept
	Improper Verification of Cryptographic Signature SNYK-JS-BROWSERIFYSIGN-6037026	165	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-NTHCHECK-1586032	165	Proof of Concept
	Denial of Service (DoS) SNYK-JS-WS-7266574	165	Proof of Concept
	Prototype Pollution SNYK-JS-NUNJUCKS-1079083	165	Proof of Concept
	Arbitrary File Overwrite SNYK-JS-TAR-1536528	165	No Known Exploit
	Arbitrary File Overwrite SNYK-JS-TAR-1536531	165	No Known Exploit
	Information Exposure SNYK-JS-FOLLOWREDIRECTS-6444610	165	Proof of Concept
	Incomplete List of Disallowed Inputs SNYK-JS-BABELTRAVERSE-5962462	165	Proof of Concept
	Server-side Request Forgery (SSRF) SNYK-JS-IP-6240864	165	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SSRI-1246392	165	Proof of Concept
	Prototype Pollution SNYK-JS-Y18N-1021887	165	Proof of Concept
	Arbitrary File Write SNYK-JS-TAR-1579147	165	No Known Exploit
	Arbitrary File Write SNYK-JS-TAR-1579152	165	No Known Exploit
	Arbitrary File Write SNYK-JS-TAR-1579155	165	No Known Exploit
	Prototype Poisoning SNYK-JS-QS-3153490	165	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	165	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	165	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	165	Proof of Concept
	Arbitrary Code Injection SNYK-JS-SERIALIZEJAVASCRIPT-570062	165	Proof of Concept
	Prototype Pollution SNYK-JS-LOADERUTILS-3043105	165	No Known Exploit
	Prototype Pollution SNYK-JS-LOADERUTILS-3043105	165	No Known Exploit
	Code Injection SNYK-JS-LODASH-1040724	165	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-567746	165	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-608086	165	Proof of Concept
	Improper Input Validation SNYK-JS-URLPARSE-2407770	165	Proof of Concept
	Path Traversal SNYK-JS-WEBPACKDEVMIDDLEWARE-6476555	165	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-WEBSOCKETEXTENSIONS-570623	165	Proof of Concept
	Denial of Service (DoS) SNYK-JS-DECODEURICOMPONENT-3149970	165	Proof of Concept
	Remote Memory Exposure SNYK-JS-DNSPACKET-1293563	165	No Known Exploit
	Prototype Pollution SNYK-JS-LODASH-6139239	165	Proof of Concept
	Cryptographic Issues SNYK-JS-ELLIPTIC-571484	165	Proof of Concept
	Improper Verification of Cryptographic Signature SNYK-JS-NODEFORGE-2430339	165	No Known Exploit
	Prototype Pollution SNYK-JS-NODEFORGE-598677	165	Proof of Concept
	Improper Input Validation SNYK-JS-FOLLOWREDIRECTS-6141137	165	Proof of Concept
	Denial of Service (DoS) SNYK-JS-HTTPPROXY-569139	165	Proof of Concept
	Denial of Service (DoS) SNYK-JS-SOCKJS-575261	165	Proof of Concept
	Server-Side Request Forgery (SSRF) SNYK-JS-IP-7148531	165	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-WS-1296835	165	Proof of Concept
	Prototype Pollution SNYK-JS-JSON5-3182856	165	Proof of Concept
	Prototype Pollution SNYK-JS-JSON5-3182856	165	Proof of Concept
	Prototype Pollution SNYK-JS-YARGSPARSER-560381	165	Proof of Concept
	Cross-site Scripting (XSS) SNYK-JS-NUNJUCKS-5431309	165	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHPARSE-1077067	165	Proof of Concept
	Uncontrolled Resource Consumption ('Resource Exhaustion') SNYK-JS-TAR-6476909	165	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LOADERUTILS-3042992	165	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LOADERUTILS-3105943	165	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LOADERUTILS-3042992	165	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LOADERUTILS-3105943	165	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	165	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-TERSER-2806366	165	No Known Exploit
	Improper Input Validation SNYK-JS-URLPARSE-1078283	165	No Known Exploit
	Open Redirect SNYK-JS-URLPARSE-1533425	165	Proof of Concept
	Access Restriction Bypass SNYK-JS-URLPARSE-2401205	165	Proof of Concept
	Authorization Bypass SNYK-JS-URLPARSE-2407759	165	Proof of Concept
	Authorization Bypass Through User-Controlled Key SNYK-JS-URLPARSE-2412697	165	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-BROWSERSLIST-1090194	165	Proof of Concept
	Cryptographic Issues SNYK-JS-ELLIPTIC-1064899	165	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-3050818	165	No Known Exploit
	Open Redirect SNYK-JS-NODEFORGE-2330875	165	Proof of Concept
	Information Exposure SNYK-JS-EVENTSOURCE-2823375	165	Proof of Concept
	Open Redirect SNYK-JS-EXPRESS-6474509	165	No Known Exploit
	Prototype Pollution SNYK-JS-NODEFORGE-2331908	165	No Known Exploit
	Improper Verification of Cryptographic Signature SNYK-JS-NODEFORGE-2430337	165	No Known Exploit
	Improper Verification of Cryptographic Signature SNYK-JS-NODEFORGE-2430341	165	No Known Exploit
	Information Exposure SNYK-JS-FOLLOWREDIRECTS-2332181	165	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-TAR-1536758	165	No Known Exploit
	Regular Expression Denial of Service (ReDoS) npm:debug:20170905	165	Proof of Concept
	Regular Expression Denial of Service (ReDoS) npm:debug:20170905	165	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-2429795	165	Proof of Concept
	Information Exposure SNYK-JS-FOLLOWREDIRECTS-2396346	165	No Known Exploit

Release notes

Package name: webpack-dev-server

• 5.0.4 - 2024-03-19
  

  5.0.4 (2024-03-19)

  Bug Fixes

  • security: bump webpack-dev-middleware (#5112) (aab576a)
• 5.0.3 - 2024-03-12
  

  5.0.3 (2024-03-12)

  Bug Fixes

  • types: proxy (#5101) (6e1aed3)
• 5.0.2 - 2024-02-16
  

  5.0.2 (2024-02-16)

  Bug Fixes

  • types (#5057) (da2c24d)
• 5.0.1 - 2024-02-13
  

  5.0.1 (2024-02-13)

  Bug Fixes

  • avoid using eval in client (#5045) (7681477)
  • overlay and require-trusted-types-for (#5046) (e115436)
• 5.0.0 - 2024-02-12
  

  5.0.0 (2024-02-12)

  Migration Guide and Changes.

• 4.15.2 - 2024-03-20
• 4.15.1 - 2023-06-09
  

  4.15.1 (2023-06-09)

  Bug Fixes

  • replace :: with localhost before openBrowser() (#4856) (874c44b)
  • types: compatibility with @ types/ws (#4899) (34bcec2)
• 4.15.0 - 2023-05-07
  

  4.15.0 (2023-05-07)

  Features

  • overlay displays unhandled promise rejection (#4849) (d1dd430)
• 4.14.0 - 2023-05-06
  

  4.14.0 (2023-05-06)

  Features

  • allow CLI to be ESM (#4837) (bb4a5d9)
  • allow filter overlay errors/warnings/runtimeErrors with function (#4813) (aab01b3)
• 4.13.3 - 2023-04-15
  

  4.13.3 (2023-04-15)

  Bug Fixes

  • perf: reduced initial start time (#4818) (fcf01d1)
• 4.13.2 - 2023-03-31
  

  4.13.2 (2023-03-31)

  Bug Fixes

  • prevent open 0.0.0.0 in browser due windows problems (04e74f2)
• 4.13.1 - 2023-03-18
• 4.13.0 - 2023-03-17
• 4.12.0 - 2023-03-14
• 4.11.1 - 2022-09-19
• 4.11.0 - 2022-09-07
• 4.10.1 - 2022-08-29
• 4.10.0 - 2022-08-10
• 4.9.3 - 2022-06-29
• 4.9.2 - 2022-06-06
• 4.9.1 - 2022-05-31
• 4.9.0 - 2022-05-04
• 4.8.1 - 2022-04-06
• 4.8.0 - 2022-04-05
• 4.7.4 - 2022-02-02
• 4.7.3 - 2022-01-11
• 4.7.2 - 2021-12-29
• 4.7.1 - 2021-12-22
• 4.7.0 - 2021-12-21
• 4.6.0 - 2021-11-25
• 4.5.0 - 2021-11-13
• 4.4.0 - 2021-10-27
• 4.3.1 - 2021-10-04
• 4.3.0 - 2021-09-25
• 4.2.1 - 2021-09-13
• 4.2.0 - 2021-09-09
• 4.1.1 - 2021-09-07
• 4.1.0 - 2021-08-31
• 4.0.0 - 2021-08-18
• 4.0.0-rc.1 - 2021-08-17
• 4.0.0-rc.0 - 2021-07-19
• 4.0.0-beta.3 - 2021-05-06
• 4.0.0-beta.2 - 2021-04-06
• 4.0.0-beta.1 - 2021-03-23
• 4.0.0-beta.0 - 2020-11-27
• 3.11.3 - 2021-11-08
• 3.11.2 - 2021-01-13
• 3.11.1 - 2020-12-29
• 3.11.0 - 2020-05-08
• 3.10.3 - 2020-02-05

from webpack-dev-server GitHub release notes

---

Important

• Warning: This PR contains a major version upgrade, and may be a breaking change.
• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[google-cla]

Thanks for your pull request! It looks like this may be your first contribution to a Google open source project. Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA).

View this failed invocation of the CLA check for more information.

For the most up to date status, view the checks section at the bottom of the pull request.