[Snyk] Upgrade gulp-typedoc from 2.2.0 to 3.0.2

[MarcelRaschke]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade gulp-typedoc from 2.2.0 to 3.0.2.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

Warning: This is a major version upgrade, and may be a breaking change.

• The recommended version is 12 versions ahead of your current version.
• The recommended version was released 8 months ago, on 2021-12-14.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Prototype Override Protection Bypass npm:qs:20170213	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Improper Privilege Management SNYK-JS-SHELLJS-2332187	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-SETVALUE-450213	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-SETVALUE-1540541	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-SETVALUE-450213	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-SETVALUE-1540541	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-MIXINDEEP-450212	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-JSONSCHEMA-1920922	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Prototype Pollution SNYK-JS-INI-1048974	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Arbitrary Code Execution SNYK-JS-HANDLEBARS-534478	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Denial of Service (DoS) SNYK-JS-HANDLEBARS-480388	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Prototype Pollution SNYK-JS-HANDLEBARS-469063	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Prototype Pollution SNYK-JS-HANDLEBARS-174183	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Prototype Pollution SNYK-JS-HANDLEBARS-173692	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Remote Code Execution (RCE) SNYK-JS-HANDLEBARS-1056767	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-ASYNC-2441827	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-AJV-584908	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ACORN-559469	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ACORN-559469	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-WS-1296835	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-UGLIFYJS-1727251	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHPARSE-1077067	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Denial of Service (DoS) SNYK-JS-NWSAPI-2841516	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Denial of Service (DoS) SNYK-JS-HTTPPROXY-569139	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-HIGHLIGHTJS-1045326	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Prototype Pollution SNYK-JS-HANDLEBARS-567742	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Validation Bypass SNYK-JS-KINDOF-537849	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-HANDLEBARS-534988	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Prototype Pollution SNYK-JS-HANDLEBARS-1279029	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Information Exposure SNYK-JS-FOLLOWREDIRECTS-2332181	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Open Redirect SNYK-JS-ECSTATIC-174543	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Prototype Pollution SNYK-JS-DOTPROP-543489	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Information Exposure SNYK-JS-FOLLOWREDIRECTS-2396346	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: gulp-typedoc

• 3.0.2 - 2021-12-14
  No content.
• 3.0.1 - 2021-06-06
• 3.0.0 - 2021-05-07
  No content.
• 2.2.9 - 2020-12-14
  No content.
• 2.2.8 - 2020-12-14
  No content.
• 2.2.7 - 2020-11-26
  No content.
• 2.2.6 - 2020-11-26
  No content.
• 2.2.5 - 2020-04-04
  No content.
• 2.2.4 - 2020-01-12
  No content.
• 2.2.3 - 2019-11-03
• 2.2.2 - 2019-02-02
  No content.
• 2.2.1 - 2018-11-27
  No content.
• 2.2.0 - 2018-01-13

from gulp-typedoc GitHub release notes

Commit messages

Package name: gulp-typedoc

• 79e2287 v3.0.2
• abc6d88 Merge pull request API to hide parts of the code microsoft/monaco-editor#45 from tristan00b/master
• 8e8a920 Only perform shallow copy of user options
• 67bb0b1 Work with clean copy of user options
• 01603b2 v3.0.1
• 3acda96 Merge pull request Loader silently fails when used on page in ASP.NET MVC "Areas" page. microsoft/monaco-editor#41 from robinprashanth/master
• e17216f Added entryPoints to specify the entry points to be documented by TypeDoc.
• c9cb9d2 Merge pull request How do I get the Text of the Model microsoft/monaco-editor#37 from rogierschouten/dependabot/npm_and_yarn/hosted-git-info-2.8.9
• 9ef199a v3.0.0: upgrade TypeDoc and fix insecure dependencies.
• ee41b48 Bump hosted-git-info from 2.8.8 to 2.8.9
• 8d807a6 Merge pull request where is the compiler microsoft/monaco-editor#35 from rogierschouten/dependabot/npm_and_yarn/handlebars-4.7.7
• a7a6d4c Merge pull request Transpiling TypeScript to JavaScript and SASS/LESS to CSS microsoft/monaco-editor#36 from rogierschouten/dependabot/npm_and_yarn/lodash-4.17.21
• 34bdc75 Bump lodash from 4.17.20 to 4.17.21
• e1984d1 Bump handlebars from 4.7.6 to 4.7.7
• e69fabf Merge pull request HTMLHint (or extension support) microsoft/monaco-editor#34 from rogierschouten/dependabot/npm_and_yarn/y18n-3.2.2
• 5d93450 Bump y18n from 3.2.1 to 3.2.2
• 116693a v2.2.9
• db61a18 Merge pull request Manually execute "Format Code" action microsoft/monaco-editor#32 from rogierschouten/dependabot/npm_and_yarn/highlight.js-10.4.1
• c7b9181 v2.2.8
• 11cf974 Merge pull request different javascript defaults base on uri match microsoft/monaco-editor#33 from rogierschouten/dependabot/npm_and_yarn/ini-1.3.7
• 1856768 Bump ini from 1.3.5 to 1.3.7
• 3207d12 Bump highlight.js from 10.4.0 to 10.4.1
• e6b67b5 v2.2.7: fix filename
• ca79138 v2.2.7: remove files from published version

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs