[Snyk] Fix for 1 vulnerabilities

[baby636]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

⚠️ Warning

Failed to update the package-lock.json, please update manually before merging.

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: chai-as-promised

The new version differs by 4 commits.

• e237fd2 7.1.1
• b3935f8 Make ESLint a devDependency instead of a dependency
• 4c2d628 7.1.0
• 248810a Fix proxies for property assertions (Write e2e tests - Closes #196 LiskArchive/lisk-explorer#205)

See the full diff

Package name: css-loader

The new version differs by 80 commits.

• 634ab49 chore(release): 2.0.0
• 6ade2d0 refactor: remove unused file (URL-based filters - Closes #814 LiskArchive/lisk-explorer#860)
• e7525c9 test: nested url (General UI update LiskArchive/lisk-explorer#859)
• 7259faa test: css hacks (Pagination button UI update LiskArchive/lisk-explorer#858)
• 5e6034c feat: allow to filter import at-rules (Pagination logic update - #850 LiskArchive/lisk-explorer#857)
• 5e702e7 feat: allow filtering urls (Adjust Spacing on big-info elements 2 - Closes #852  LiskArchive/lisk-explorer#856)
• 9642aa5 test: css stuff (Currency picker fix - #849 LiskArchive/lisk-explorer#855)
• 3338656 fix: reduce number of require for url (Adjust Spacing on big-info element - Closes #852  LiskArchive/lisk-explorer#854)
• 533abbe test: issue 636 (Footer Icons Updates - Closes #848 LiskArchive/lisk-explorer#853)
• 08c551c refactor: better warning on invalid url resolution (Landing page: adjust spacings LiskArchive/lisk-explorer#852)
• b0aa159 test: issue Add new coincheck wallet to known.json - Closes #588 LiskArchive/lisk-explorer#589 (Implement the new block pagination LiskArchive/lisk-explorer#851)
• f599c70 fix: broken unucode characters (Implement the new transaction pagination LiskArchive/lisk-explorer#850)
• 1e551f3 test: issue 286 (Fix the currency picker LiskArchive/lisk-explorer#849)
• 419d27b docs: improve readme (Footer icons update  LiskArchive/lisk-explorer#848)
• d94a698 refactor: webpack-default (Explorer redesign - Closes #796 #813 #816 #820 #825 #741 LiskArchive/lisk-explorer#847)
• b97d997 feat: schema options
• 453248f fix: support module resolution in composes (Test against Core 1.3.0 - Closes #844 LiskArchive/lisk-explorer#845)
• 8a6ea10 refactor: postcss plugins (Update test suite LiskArchive/lisk-explorer#844)
• fdcf687 fix: url resolving logic (Node.js update to 8.14.0 - Closes #837 LiskArchive/lisk-explorer#843)
• 889dc7f feat: allow to disable css modules and disable their by default ( Configure cookie expiry date - Closes #841 LiskArchive/lisk-explorer#842)
• ee2d253 test: importLoaders option (Configure cookie expiry date LiskArchive/lisk-explorer#841)
• 1dad1fb feat: reuse postcss ast from other loaders (i.e `postcss-loader`) (Fontawesome Update - Closes #839  LiskArchive/lisk-explorer#840)
• fe94ebc test: icss reserved keywords (Update font-awesome to version 5 LiskArchive/lisk-explorer#839)
• 9eaba66 refactor: migrate on message api for postcss-icss-plugin (Use Node.js 8.14.0 - Closes #837 LiskArchive/lisk-explorer#838)

See the full diff

Package name: optipng-bin

The new version differs by 2 commits.

• 9d792dc 5.0.0
• 54813d3 Require Node.js 6 (Write unit tests for frontend code LiskArchive/lisk-explorer#102)

See the full diff

Package name: protractor

The new version differs by 63 commits.

• 5d8da04 chore(release): version bump to 6.0.0 and update the changelog
• d777738 chore(tests): circleci - chrome 69 requires chromdriver to 2.44 (#5182)
• 3d50b68 chore(deps): update based on npm audit
• e478ba8 chore(release): bump version to 6.0.1-beta
• 7054827 chore(types): fix types to use not @ types/selenium-webdriver (#5127)
• 2e5c2e6 chore(jasmine): prevent random execution order in jasmine 3 (#5126)
• 8afc4e2 chore(release): release 6.0.0-beta and update the changelog
• 5fd711c chore(webdriver-manager): use [email protected]
• 96ae17c deps(jasmine): upgrade jasmine 3.3 (#5102)
• 68491dd chore(expectedConditions): update generic Function typings (#5101)
• cf43651 chore(debugprint): convert debugprint to TypeScript (#5074)
• d213aa9 deps(selenium): upgrade to selenium 4 (#5095)
• 4672265 chore(browser): remove timing issues with restart and fork (#5085)
• b4dbcc2 chore(elementexplorer): remove explorer bin file (#5094)
• 7de6d85 docs(api): update examples to use async/await (#5081)
• 1b2036e typings(selenium): try out new version of typings (#5084)
• befb457 chore(bin): update webdriver-manager require to use the cli (#5093)
• 509f1b2 deps(latest): upgrade to the gulp and typescript (#5089)
• 2def202 deps(webdriver-manager): use replacement (#5088)
• 9d510db chore(test): remove jasmine addMatcher test (#5072)
• 6522e40 chore(cleanup): clean up imports and wdpromises (#5073)
• 3b8f263 chore(ignoreSynchornization): clean up to use waitForAngularEnabled (#5071)
• ffa3519 chore(debugger): remove debugger and explore methods (#5070)
• 0f7a38a chore(test): error tests fixed (#5069)

See the full diff

Package name: webpack

The new version differs by 250 commits.

• 213226e 4.0.0
• fde0183 Merge pull request #6081 from webpack/formating/prettier
• b6396e7 update stats
• f32bd41 fix linting
• 5238159 run prettier on existing code
• 518d1e0 replace js-beautify with prettier
• 4c25bfb 4.0.0-beta.3
• dd93716 Merge pull request #6296 from shellscape/fix/hmr-before-node-stuff
• 7a07901 Merge pull request #6563 from webpack/performance/assign-depth
• c7eb895 Merge pull request #6452 from webpack/update_acorn
• 9179980 Merge pull request #6551 from nveenjain/fix/templatemd
• e52f323 optimize performance of assignDepth
• 6bf5df5 Fixed template.md
• 90ab23a Merge branch 'master' into fix/hmr-before-node-stuff
• b0949cb add integration test for spread operator
• 39438c7 unittest now also walks the ast
• 15ab027 Merge pull request #6536 from jevan0307/sideEffects-selectors
• 1611ce1 Merge pull request #6561 from joshunger/patch-1
• 6e175bc Merge pull request #6549 from webpack/md4_hash
• 0637531 Add a hyperlink to create a new issue
• 0e1f9c6 Merge pull request #6554 from webpack/deps/end-of-beta
• 72477f4 upgrade versions to stable versions
• ed30285 Merge pull request #6546 from webpack/bot/review-permission
• 40ee8c7 Use MD4 for hashing

See the full diff

Package name: webpack-dev-server

The new version differs by 250 commits.

• c9271b9 chore(release): 4.0.0
• 18bf369 test: fix stability (#3676)
• cdcabb2 fix: respect protocol from browser for manual setup (#3675)
• 1768d6b fix: initial reloading for lazy compilation (#3662)
• 4f5bab1 docs: improve examples (#3672)
• f2d87fb fix: improve https CLI output (#3673)
• 0277c5e chore: remove redundant console statements (#3671)
• 16fcdbc docs: add `ipc` example (#3667)
• 8915fb8 test: add e2e tests for built in routes (#3669)
• 4d1cbe1 docs: ask `version` information in issue template (#3668)
• b6c1881 chore(deps-dev): bump core-js from 3.16.1 to 3.16.2 (#3666)
• ffa8cc5 chore(deps-dev): bump supertest from 6.1.5 to 6.1.6 (#3665)
• f1fdaa7 chore(release): 4.0.0-rc.1
• c4678bc fix: legacy API (#3660)
• d8bdd03 test: fix stability (#3661)
• 22b1414 refactor: remove `killable` (#3657)
• 75bafbf test: add e2e tests for module federation (#3658)
• 493ccbd chore(deps): update `ws` (#3652)
• ae8c523 test: add e2e test for universal compiler (#3656)
• f94b84f chore(deps): update (#3655)
• 1923132 test: fix cli
• 2adfd01 test: fix todo (#3653)
• 6e2cbde fix: proxy logging and allow to pass options without the `target` option (#3651)
• c9ccc96 fix: respect infastructureLogging.level for client.logging (#3613)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.