[Snyk] Fix for 161 vulnerabilities

[adamlaska]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • packages/app/package.json
  • packages/app/.snyk

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	704/1000 Why? Has a fix available, CVSS 9.8	Machine-In-The-Middle SNYK-JS-AIRTABLE-480404	No	No Known Exploit
	616/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.9	Prototype Pollution SNYK-JS-ALGOLIASEARCHHELPER-1570421	Yes	Proof of Concept
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	Yes	Proof of Concept
	616/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.9	Server-Side Request Forgery (SSRF) SNYK-JS-AXIOS-1038255	No	Proof of Concept
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-AXIOS-1579269	No	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-COLORSTRING-1082939	Yes	Proof of Concept
	636/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.3	Prototype Pollution SNYK-JS-DOTOBJECT-548905	Yes	Proof of Concept
	526/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 4.1	Arbitrary Code Injection SNYK-JS-EJS-1049328	Yes	Proof of Concept
	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Remote Code Execution (RCE) SNYK-JS-EJS-2803307	Yes	Proof of Concept
	804/1000 Why? Mature exploit, Has a fix available, CVSS 7.5	Heap-based Buffer Overflow SNYK-JS-ELECTRON-1021884	Yes	Mature
	869/1000 Why? Mature exploit, Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1041745	Yes	Mature
	794/1000 Why? Mature exploit, Has a fix available, CVSS 7.3	Improper Validation SNYK-JS-ELECTRON-1047306	Yes	Mature
	654/1000 Why? Has a fix available, CVSS 8.8	Heap-based Buffer Overflow SNYK-JS-ELECTRON-1048693	Yes	No Known Exploit
	654/1000 Why? Has a fix available, CVSS 8.8	Improper Access Control SNYK-JS-ELECTRON-1049321	Yes	No Known Exploit
	654/1000 Why? Has a fix available, CVSS 8.8	Improper Input Validation SNYK-JS-ELECTRON-1049323	Yes	No Known Exploit
	665/1000 Why? Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1049547	Yes	No Known Exploit
	624/1000 Why? Has a fix available, CVSS 8.2	Use After Free SNYK-JS-ELECTRON-1050424	Yes	No Known Exploit
	550/1000 Why? Has a fix available, CVSS 6.5	Information Exposure SNYK-JS-ELECTRON-1050427	Yes	No Known Exploit
	751/1000 Why? Mature exploit, Has a fix available, CVSS 7.3	Insufficient Validation SNYK-JS-ELECTRON-1050882	Yes	Mature
	704/1000 Why? Has a fix available, CVSS 9.8	Use After Free SNYK-JS-ELECTRON-1050999	Yes	No Known Exploit
	589/1000 Why? Has a fix available, CVSS 7.5	Out-of-bounds Read SNYK-JS-ELECTRON-1051000	Yes	No Known Exploit
	646/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.5	Improper Input Validation SNYK-JS-ELECTRON-1064555	Yes	Proof of Concept
	654/1000 Why? Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1064558	Yes	No Known Exploit
	654/1000 Why? Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1064561	Yes	No Known Exploit
	479/1000 Why? Has a fix available, CVSS 5.3	Information Exposure SNYK-JS-ELECTRON-1065981	Yes	No Known Exploit
	704/1000 Why? Has a fix available, CVSS 9.8	Use After Free SNYK-JS-ELECTRON-1070013	Yes	No Known Exploit
	579/1000 Why? Has a fix available, CVSS 7.3	Insufficient Validation SNYK-JS-ELECTRON-1070014	Yes	No Known Exploit
	464/1000 Why? Has a fix available, CVSS 5	Use After Free SNYK-JS-ELECTRON-1070015	Yes	No Known Exploit
	654/1000 Why? Has a fix available, CVSS 8.8	Heap Buffer Overflow SNYK-JS-ELECTRON-1085647	Yes	No Known Exploit
	869/1000 Why? Mature exploit, Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1085705	Yes	Mature
	654/1000 Why? Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1085994	Yes	No Known Exploit
	654/1000 Why? Has a fix available, CVSS 8.8	Out-of-Bounds SNYK-JS-ELECTRON-1085996	Yes	No Known Exploit
	479/1000 Why? Has a fix available, CVSS 5.3	Information Exposure SNYK-JS-ELECTRON-1085998	Yes	No Known Exploit
	655/1000 Why? Has a fix available, CVSS 8.6	Out-of-Bounds SNYK-JS-ELECTRON-1086693	Yes	No Known Exploit
	550/1000 Why? Has a fix available, CVSS 6.5	Access Restriction Bypass SNYK-JS-ELECTRON-1086694	Yes	No Known Exploit
	655/1000 Why? Has a fix available, CVSS 8.6	Improper Input Validation SNYK-JS-ELECTRON-1086695	Yes	No Known Exploit
	654/1000 Why? Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1087442	Yes	No Known Exploit
	869/1000 Why? Mature exploit, Has a fix available, CVSS 8.8	Out-of-bounds Write SNYK-JS-ELECTRON-1088600	Yes	Mature
	619/1000 Why? Has a fix available, CVSS 8.1	Insecure Defaults SNYK-JS-ELECTRON-1088602	Yes	No Known Exploit
	869/1000 Why? Mature exploit, Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1252279	Yes	Mature
	654/1000 Why? Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1252280	Yes	No Known Exploit
	654/1000 Why? Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1253279	Yes	No Known Exploit
	654/1000 Why? Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1253281	Yes	No Known Exploit
	876/1000 Why? Mature exploit, Has a fix available, CVSS 9.8	Out-of-bounds SNYK-JS-ELECTRON-1257943	Yes	Mature
	654/1000 Why? Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1258207	Yes	No Known Exploit
	654/1000 Why? Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1259349	Yes	No Known Exploit
	654/1000 Why? Has a fix available, CVSS 8.8	Integer Overflow or Wraparound SNYK-JS-ELECTRON-1260586	Yes	No Known Exploit
	584/1000 Why? Has a fix available, CVSS 7.4	Out-of-bounds Read SNYK-JS-ELECTRON-1261111	Yes	No Known Exploit
	589/1000 Why? Has a fix available, CVSS 7.5	Heap-based Buffer Overflow SNYK-JS-ELECTRON-1277203	Yes	No Known Exploit
	654/1000 Why? Has a fix available, CVSS 8.8	Integer Overflow SNYK-JS-ELECTRON-1277205	Yes	No Known Exploit
	465/1000 Why? Has a fix available, CVSS 4.8	Improper Input Validation SNYK-JS-ELECTRON-1277526	Yes	No Known Exploit
	399/1000 Why? Has a fix available, CVSS 3.7	Out Of Bounds Read SNYK-JS-ELECTRON-1278596	Yes	No Known Exploit
	579/1000 Why? Has a fix available, CVSS 7.3	Heap-based Buffer Overflow SNYK-JS-ELECTRON-1296553	Yes	No Known Exploit
	579/1000 Why? Has a fix available, CVSS 7.3	Heap-based Buffer Overflow SNYK-JS-ELECTRON-1296555	Yes	No Known Exploit
	654/1000 Why? Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1296557	Yes	No Known Exploit
	761/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.8	Type Confusion SNYK-JS-ELECTRON-1296559	Yes	Proof of Concept
	654/1000 Why? Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1296561	Yes	No Known Exploit
	579/1000 Why? Has a fix available, CVSS 7.3	Race Condition SNYK-JS-ELECTRON-1296563	Yes	No Known Exploit
	579/1000 Why? Has a fix available, CVSS 7.3	Heap-based Buffer Overflow SNYK-JS-ELECTRON-1296565	Yes	No Known Exploit
	654/1000 Why? Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1312313	Yes	No Known Exploit
	869/1000 Why? Mature exploit, Has a fix available, CVSS 8.8	Access of Resource Using Incompatible Type ('Type Confusion') SNYK-JS-ELECTRON-1312314	Yes	Mature
	654/1000 Why? Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1312315	Yes	No Known Exploit
	869/1000 Why? Mature exploit, Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1313765	Yes	Mature
	529/1000 Why? Has a fix available, CVSS 6.3	Use After Free SNYK-JS-ELECTRON-1313767	Yes	No Known Exploit
	654/1000 Why? Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1314896	Yes	No Known Exploit
	654/1000 Why? Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1315151	Yes	No Known Exploit
	704/1000 Why? Has a fix available, CVSS 9.8	Out-of-bounds Write SNYK-JS-ELECTRON-1315668	Yes	No Known Exploit
	654/1000 Why? Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1533614	Yes	No Known Exploit
	654/1000 Why? Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1534881	Yes	No Known Exploit
	654/1000 Why? Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1534882	Yes	No Known Exploit
	869/1000 Why? Mature exploit, Has a fix available, CVSS 8.8	Type Confusion SNYK-JS-ELECTRON-1534883	Yes	Mature
	550/1000 Why? Has a fix available, CVSS 6.5	Heap-based Buffer Overflow SNYK-JS-ELECTRON-1534884	Yes	No Known Exploit
	529/1000 Why? Has a fix available, CVSS 6.3	Use After Free SNYK-JS-ELECTRON-1536579	Yes	No Known Exploit
	761/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1536581	Yes	Proof of Concept
	654/1000 Why? Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1536587	Yes	No Known Exploit
	694/1000 Why? Mature exploit, Has a fix available, CVSS 5.3	Out-of-Bounds SNYK-JS-ELECTRON-1585619	Yes	Mature
	654/1000 Why? Has a fix available, CVSS 8.8	Type Confusion SNYK-JS-ELECTRON-1586050	Yes	No Known Exploit
	579/1000 Why? Has a fix available, CVSS 7.3	Buffer Overflow SNYK-JS-ELECTRON-1656742	Yes	No Known Exploit
	869/1000 Why? Mature exploit, Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1656743	Yes	Mature
	590/1000 Why? Has a fix available, CVSS 7.3	Out-of-Bounds SNYK-JS-ELECTRON-1656745	Yes	No Known Exploit
	654/1000 Why? Has a fix available, CVSS 8.8	Access Restriction Bypass SNYK-JS-ELECTRON-1656746	Yes	No Known Exploit
	654/1000 Why? Has a fix available, CVSS 8.8	Type Confusion SNYK-JS-ELECTRON-1656752	Yes	No Known Exploit
	550/1000 Why? Has a fix available, CVSS 6.5	Improper Input Validation SNYK-JS-ELECTRON-1727342	Yes	No Known Exploit
	694/1000 Why? Mature exploit, Has a fix available, CVSS 5.3	Improper Input Validation SNYK-JS-ELECTRON-1727344	Yes	Mature
	601/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.6	Sandbox Bypass SNYK-JS-ELECTRON-1731315	Yes	Proof of Concept
	869/1000 Why? Mature exploit, Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1910985	Yes	Mature
	654/1000 Why? Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1910987	Yes	No Known Exploit
	429/1000 Why? Has a fix available, CVSS 4.3	Exposure of Resource to Wrong Sphere SNYK-JS-ELECTRON-1910988	Yes	No Known Exploit
	429/1000 Why? Has a fix available, CVSS 4.3	Improper Access Control SNYK-JS-ELECTRON-1910991	Yes	No Known Exploit
	811/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 9.8	Type Confusion SNYK-JS-ELECTRON-1911949	Yes	Proof of Concept
	654/1000 Why? Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1912074	Yes	No Known Exploit
	654/1000 Why? Has a fix available, CVSS 8.8	Use After Free SNYK-JS-ELECTRON-1912075	Yes	No Known Exploit
	579/1000 Why? Has a fix available, CVSS 7.3	Heap-based Buffer Overflow SNYK-JS-ELECTRON-1912082	Yes	No Known Exploit
	654/1000 Why? Has a fix available, CVSS 8.8	Heap-based Buffer Overflow SNYK-JS-ELECTRON-1912084	Yes	No Known Exploit
	754/1000 Why? Mature exploit, Has a fix available, CVSS 6.5	Information Exposure SNYK-JS-ELECTRON-1912085	Yes	Mature
	/1000 Why?	Use After Free SNYK-JS-ELECTRON-1924893	Yes	No Known Exploit
	/1000 Why?	Inappropriate Implementation SNYK-JS-ELECTRON-1924895	Yes	No Known Exploit
	/1000 Why?	Type Confusion SNYK-JS-ELECTRON-1930826	Yes	No Known Exploit
	/1000 Why?	Use After Free SNYK-JS-ELECTRON-2322001	Yes	Mature
	/1000 Why?	Type Confusion SNYK-JS-ELECTRON-2329257	Yes	No Known Exploit
	/1000 Why?	Improper Input Validation SNYK-JS-ELECTRON-2332173	Yes	No Known Exploit
	/1000 Why?	Improper Control of a Resource Through its Lifetime SNYK-JS-ELECTRON-2332176	Yes	No Known Exploit
	/1000 Why?	Use After Free SNYK-JS-ELECTRON-2338684	Yes	No Known Exploit
	/1000 Why?	Type Confusion SNYK-JS-ELECTRON-2339883	Yes	No Known Exploit
	/1000 Why?	Improper Access Control SNYK-JS-ELECTRON-2431353	Yes	No Known Exploit
	/1000 Why?	Arbitrary Code Execution SNYK-JS-ELECTRON-483056	Yes	No Known Exploit
	/1000 Why?	Use After Free SNYK-JS-ELECTRON-564272	Yes	No Known Exploit
	/1000 Why?	Heap Overflow SNYK-JS-ELECTRON-565051	Yes	No Known Exploit
	/1000 Why?	Out-of-bounds Read SNYK-JS-ELECTRON-565052	Yes	No Known Exploit
	/1000 Why?	Improper Access Control SNYK-JS-ELECTRON-565362	Yes	No Known Exploit
	/1000 Why?	Use After Free SNYK-JS-ELECTRON-565366	Yes	No Known Exploit
	/1000 Why?	Use After Free SNYK-JS-ELECTRON-565368	Yes	No Known Exploit
	/1000 Why?	Use After Free SNYK-JS-ELECTRON-565441	Yes	No Known Exploit
	/1000 Why?	Buffer Underflow SNYK-JS-ELECTRON-565488	Yes	No Known Exploit
	/1000 Why?	Use After Free SNYK-JS-ELECTRON-565490	Yes	No Known Exploit
	/1000 Why?	Use After Free SNYK-JS-ELECTRON-565494	Yes	No Known Exploit
	/1000 Why?	Use After Free SNYK-JS-ELECTRON-565571	Yes	No Known Exploit
	/1000 Why?	Use After Free SNYK-JS-ELECTRON-565705	Yes	No Known Exploit
	/1000 Why?	Use After Free SNYK-JS-ELECTRON-565709	Yes	No Known Exploit
	/1000 Why?	Site Isolation Bypass SNYK-JS-ELECTRON-565713	Yes	No Known Exploit
	/1000 Why?	Use After Free SNYK-JS-ELECTRON-570624	Yes	No Known Exploit
	/1000 Why?	Type Confusion SNYK-JS-ELECTRON-570833	Yes	Proof of Concept
	/1000 Why?	Arbitrary File Read SNYK-JS-ELECTRON-575393	Yes	No Known Exploit
	/1000 Why?	Privilege Escalation SNYK-JS-ELECTRON-575394	Yes	No Known Exploit
	/1000 Why?	Privilege Escalation SNYK-JS-ELECTRON-575395	Yes	No Known Exploit
	/1000 Why?	Privilege Escalation SNYK-JS-ELECTRON-575396	Yes	No Known Exploit
	/1000 Why?	Information Exposure SNYK-JS-EVENTSOURCE-2823375	Yes	Proof of Concept
	/1000 Why?	Information Exposure SNYK-JS-FOLLOWREDIRECTS-2332181	No	Proof of Concept
	/1000 Why?	Information Exposure SNYK-JS-FOLLOWREDIRECTS-2396346	No	No Known Exploit
	/1000 Why?	Regular Expression Denial of Service (ReDoS) SNYK-JS-GLOBPARENT-1016905	Yes	Proof of Concept
	/1000 Why?	Open Redirect SNYK-JS-GOT-2932019	Yes	No Known Exploit
	/1000 Why?	Cross-site Scripting (XSS) SNYK-JS-GRAPHQLPLAYGROUNDHTML-571775	Yes	Mature
	/1000 Why?	Prototype Pollution SNYK-JS-GSAP-1054614	Yes	Proof of Concept
	/1000 Why?	Prototype Pollution SNYK-JS-IMMER-1019369	Yes	Proof of Concept
	/1000 Why?	Prototype Pollution SNYK-JS-IMMER-1540542	Yes	Proof of Concept
	/1000 Why?	Reverse Tabnabbing SNYK-JS-ISTANBULREPORTS-2328088	Yes	No Known Exploit
	/1000 Why?	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	No	Proof of Concept
	/1000 Why?	Command Injection SNYK-JS-LODASH-1040724	No	Proof of Concept
	/1000 Why?	Prototype Pollution SNYK-JS-LODASH-450202	No	Proof of Concept
	/1000 Why?	Prototype Pollution SNYK-JS-LODASH-567746	No	Proof of Concept
	/1000 Why?	Prototype Pollution SNYK-JS-LODASH-608086	No	Proof of Concept
	/1000 Why?	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-1019388	Yes	No Known Exploit
	/1000 Why?	Information Exposure SNYK-JS-NODEFETCH-2342118	Yes	No Known Exploit
	/1000 Why?	Denial of Service SNYK-JS-NODEFETCH-674311	Yes	No Known Exploit
	/1000 Why?	Open Redirect SNYK-JS-NODEFORGE-2330875	Yes	Proof of Concept
	/1000 Why?	Prototype Pollution SNYK-JS-NODEFORGE-2331908	Yes	No Known Exploit
	/1000 Why?	Improper Verification of Cryptographic Signature SNYK-JS-NODEFORGE-2430337	Yes	No Known Exploit
	/1000 Why?	Improper Verification of Cryptographic Signature SNYK-JS-NODEFORGE-2430339	Yes	No Known Exploit
	/1000 Why?	Improper Verification of Cryptographic Signature SNYK-JS-NODEFORGE-2430341	Yes	No Known Exploit
	/1000 Why?	Regular Expression Denial of Service (ReDoS) SNYK-JS-NTHCHECK-1586032	Yes	Proof of Concept
	/1000 Why?	Regular Expression Denial of Service (ReDoS) SNYK-JS-POSTCSS-1255640	Yes	Proof of Concept
	/1000 Why?	Command Injection SNYK-JS-REACTDEVUTILS-1083268	Yes	Proof of Concept
	/1000 Why?	Improper Privilege Management SNYK-JS-SHELLJS-2332187	No	Proof of Concept
	/1000 Why?	Remote Code Execution (RCE) SNYK-JS-SHELLQUOTE-1766506	Yes	No Known Exploit
	/1000 Why?	Regular Expression Denial of Service (ReDoS) SNYK-JS-TRIM-1017038	Yes	Proof of Concept
	/1000 Why?	Regular Expression Denial of Service (ReDoS) SNYK-JS-UGLIFYJS-1727251	Yes	No Known Exploit
	/1000 Why?	Cross-site Scripting (XSS) SNYK-JS-WEBPACKBUNDLEANALYZER-174190	Yes	No Known Exploit
	/1000 Why?	Regular Expression Denial of Service (ReDoS) SNYK-JS-WS-1296835	Yes	Proof of Concept
	/1000 Why?	Prototype Pollution SNYK-JS-YARGSPARSER-560381	Yes	Proof of Concept
	506/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 3.7	Regular Expression Denial of Service (ReDoS) npm:braces:20180219	Yes	Proof of Concept
	589/1000 Why? Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) npm:minimatch:20160620	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: @svgr/core

The new version differs by 46 commits.

• d6beada v4.0.0
• ec1accc chore(pkg): set publishConfig
• 01b194c Merge pull request [Snyk] Security upgrade mocha from 5.2.0 to 9.2.2 #217 from smooth-code/v4
• d1e727f docs(website): update it
• 15f55fe feat: allow dynamic properties in replaceAttrValues option
• a48ba7b docs: update all documentations
• 06c338d feat(svgo): prefix ids by default
• ac8b8ca feat(v4): new architecture
• c922e2e fix(cli): fix --out-dir usage with absolute path ([Snyk] Security upgrade vscode from 1.0.1 to 1.1.0 #208)
• a125679 chore: upgrade deps ([Snyk] Security upgrade vscode from 1.0.3 to 1.1.0 #209)
• 514d43d fix: prevent babel read babel.config.js ([Snyk] Security upgrade mocha from 5.2.0 to 9.2.2 #206)
• 62c7815 v3.1.0
• f8b2212 fix: style & custom SVG properties ([Snyk] Security upgrade mocha from 5.2.0 to 10.1.0 #203)
• 0256bc0 feat: allow Mask & Image on React Native ([Snyk] Security upgrade mocha from 3.5.3 to 10.1.0 #202)
• e6772d7 docs(website): drag & drop ([Snyk] Security upgrade mocha from 5.2.0 to 10.1.0 #198)
• 37205b7 docs(website): add google analytics ([Snyk] Security upgrade mocha from 5.2.0 to 10.1.0 #197)
• a4e63f0 v3.0.0
• 81cf9ef chore: upgrade deps ([Snyk] Security upgrade mocha from 5.2.0 to 10.1.0 #196)
• 42a4524 Merge pull request [Snyk] Fix for 2 vulnerabilities #195 from smooth-code/next
• a29f45a docs(jest): document how to use with Jest
• 4bdd989 feat: use forwardRef on React Native
• 7535693 fix: fix --icon + --no-dimensions
• 45522fc fix: fix expandProps when position is not allowed
• 169eb2f feat: add synchronous API

See the full diff

Package name: axios

The new version differs by 115 commits.

• e367be5 [Releasing] 0.21.3
• 83ae383 Correctly add response interceptors to interceptor chain (Fix environment variables with quotes codesandbox/codesandbox-client#4013)
• c0c8761 [Updating] changelog to include links to issues and contributors
• 619bb46 [Releasing] v0.21.2
• 82c9455 Create SECURITY.md (Brand new react sandbox cannot transpile modules codesandbox/codesandbox-client#3981)
• 5b45711 Security fix for ReDoS (Dashboard Improvements codesandbox/codesandbox-client#3980)
• 5bc9ea2 Update ECOSYSTEM.md (Fix textarea size with autosizing codesandbox/codesandbox-client#3817)
• e72813a Fixing README.md (textarea: minheight + autosize codesandbox/codesandbox-client#3818)
• e10a027 Fix README typo under Request Config (create-react-app: Import SVG paths with default import codesandbox/codesandbox-client#3825)
• e091491 Update README.md (feat: add template copy link codesandbox/codesandbox-client#3936)
• b42fbad Removed un-needed bracket
• 520c8dc Updating CI status badge (Cleanup new dashboard Start + Templates codesandbox/codesandbox-client#3953)
• 4fbeecb Adding CI on Github Actions. (Live Share Links Not Working codesandbox/codesandbox-client#3938)
• e9965bf Fixing the sauce labs tests (Reply animation refactor codesandbox/codesandbox-client#3813)
• dbc634c Remove charset in tests (Sandbox breaks completly codesandbox/codesandbox-client#3807)
• 3958e9f Add explanation of cancel token (CORS Restrictions with *.csb.app and prod-packager-packages.codesandbox.io codesandbox/codesandbox-client#3803)
• 69949a6 Adding custom return type support to interceptor (fix sorting replies codesandbox/codesandbox-client#3783)
• 49509f6 Create FUNDING.yml (Poor text contrast in the "Add dependencies" modal when using light themes codesandbox/codesandbox-client#3796)
• 199c8aa Adding parseInt to config.timeout (Dialog: Replies loader codesandbox/codesandbox-client#3781)
• 94fc4ea Adding isAxiosError typeguard documentation (fix issue with updating line codesandbox/codesandbox-client#3767)
• 0ece97c Fixing quadratic runtime when setting a maxContentLength (feat(shortcut): add shortcut for console codesandbox/codesandbox-client#3738)
• a18a0ec Updating `lib/core/README.md` about Dispatching requests (Dependency sizes codesandbox/codesandbox-client#3772)
• 59fa614 [Updated] follow-redirects to the latest version (create new OT client last codesandbox/codesandbox-client#3771)
• 7821ed2 Feat/json improvements (style multi comments codesandbox/codesandbox-client#3763)

See the full diff

Package name: chalk

The new version differs by 53 commits.

• 3fca615 2.0.0
• f66271e Add tagged template literal ([Snyk] Security upgrade nginx from 1.16.1-alpine to 1-alpine #163)
• 23ef1c7 fix linter errors
• c015568 add rainbow example
• 09fb2d8 Re-implement `chalk.enabled` ([Snyk] Security upgrade terser from 3.17.0 to 4.8.1 #160)
• 608242a spoof supports-color
• 18f2e7c add host information output
• 523b998 Revert "TEMPORARY: emergency travis CI fix (see comments)"
• 54975fb TEMPORARY: emergency travis CI fix (see comments)
• 1d73b21 Improve readme
• 6f4d6b3 Bump dependencies
• 8702496 Remove `chalk.styles`
• 0412cdf Minor code improvements
• 249b9ac ES2015ify the codebase
• cb3f230 Add RGB (256/Truecolor) support ([Snyk] Security upgrade react-error-overlay from 1.0.10 to 2.0.0 #140)
• dbae68d Update dependent package count in the readme ([Snyk] Security upgrade nodemon from 1.19.4 to 2.0.17 #154)
• 9b60021 Drop support for Node.js 0.10 and 0.12
• 0d21449 check parent builder object for enabled status ([Snyk] Security upgrade nginx from 1.16.1-alpine to 1.22.0-alpine #142)
• 5a69476 add XO badge
• 492f11f add example file
• 4ce73b6 make XO happy
• 7c02cf4 Add log statement to chalk examples ([Snyk] Security upgrade react-dev-utils from 3.1.1 to 7.0.2 #129)
• 835ca3d You've just reached 10,000 dependent modules. ([pull] master from codesandbox:master #122)
• 74c087d minor doc improvements ([Snyk] Security upgrade airtable from 0.5.10 to 0.7.2 #120)

See the full diff

Package name: color

The new version differs by 4 commits.

• 0d867e7 1.0.0
• b175a9f slightly updated v1 readme
• 332b10e Merge pull request [Snyk] Security upgrade axios from 0.19.2 to 0.20.0 #96 from Qix-/makeover
• f1f880d v1.x makeover 💄

See the full diff

Package name: copy-webpack-plugin

The new version differs by 31 commits.

• 64e60c2 chore(release): 6.0.0
• dd9ce50 test: coverage
• 29254e3 feat: implement the `directory` option for the `cacheTransform` option
• bebafcf refactor: code
• e3803ce feat: implement the `noErrorOnMissing` option ([Snyk] Fix for 15 vulnerabilities #475)
• 8e5bc1b chore(deps): update ([Snyk] Fix for 18 vulnerabilities #474)
• 6b85c86 docs: improve ([Snyk] Security upgrade @codesandbox/components from 0.0.3 to 0.0.4 #473)
• 3ef3f25 refactor: drop test option in favor transformPath ([Snyk] Security upgrade @codesandbox/components from 0.0.3 to 0.0.4 #472)
• 045f629 refactor: code ([Snyk] Fix for 8 vulnerabilities #471)
• 20c9ae5 docs: import documentation for the `from` option ([Snyk] Security upgrade nodemon from 1.19.4 to 2.0.0 #468)
• bfb4f0e docs: improve the description for the `toType` option ([Snyk] Fix for 15 vulnerabilities #467)
• c0c9fa7 test: transform && transformPath ([Snyk] Fix for 4 vulnerabilities #470)
• 197b0d8 fix: asset size