[Snyk] Fix for 1 vulnerabilities

[javakian]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • src/Web/WebSPA/package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	661/1000 Why? Recently disclosed, Has a fix available, CVSS 7.5	Missing Release of Resource after Effective Lifetime SNYK-JS-INFLIGHT-6095116	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: eslint

The new version differs by 250 commits.

• a7985a6 6.0.0
• be74dd9 Build: changelog update for 6.0.0
• 81aa06b Upgrade: espree@6.0.0 (#11869)
• 5f022bc Fix: no-else-return autofix produces name collisions (fixes #11069) (#11867)
• ded9548 Fix: multiline-comment-style incorrect message (#11864)
• cad074d Docs: Add JSHint W047 compat to no-floating-decimal (#11861)
• 41f6304 Upgrade: sinon (#11855)
• 167ce87 Chore: remove unuseable profile command (#11854)
• c844c6f Fix: max-len properly ignore trailing comments (fixes #11838) (#11841)
• 1b5661a Fix: no-var should not fix variables named 'let' (fixes #11830) (#11832)
• 4d75956 Build: CI with Azure Pipelines (#11845)
• 1db3462 Chore: rm superfluous argument & fix perf-multifiles-targets (#11834)
• c57a4a4 Upgrade: @ babel/polyfill => core-js v3 (#11833)
• 65faa04 Docs: Clarify prefer-destructuring array/object difference (fixes #9970) (#11851)
• 81c3823 Fix: require-atomic-updates reports parameters (fixes #11723) (#11774)
• aef8ea1 Sponsors: Sync README with website
• 4f48f5a 6.0.0-rc.0
• 6bad650 Build: changelog update for 6.0.0-rc.0
• f403b07 Update: introduce minKeys option to sort-keys rule (fixes #11624) (#11625)
• 87451f4 Fix: no-octal should report NonOctalDecimalIntegerLiteral (fixes #11794) (#11805)
• e4ab053 Update: support "bigint" in valid-typeof rule (#11802)
• e0fafc8 Chore: removes unnecessary assignment in loop (#11780)
• 20908a3 Docs: removed '>' prefix from from docs/working-with-rules (#11818)
• 1c43eef Sponsors: Sync README with website

See the full diff

Package name: protractor

The new version differs by 63 commits.

• 5d8da04 chore(release): version bump to 6.0.0 and update the changelog
• d777738 chore(tests): circleci - chrome 69 requires chromdriver to 2.44 (#5182)
• 3d50b68 chore(deps): update based on npm audit
• e478ba8 chore(release): bump version to 6.0.1-beta
• 7054827 chore(types): fix types to use not @ types/selenium-webdriver (#5127)
• 2e5c2e6 chore(jasmine): prevent random execution order in jasmine 3 (#5126)
• 8afc4e2 chore(release): release 6.0.0-beta and update the changelog
• 5fd711c chore(webdriver-manager): use webdriver-manager@13.0.0-beta
• 96ae17c deps(jasmine): upgrade jasmine 3.3 (#5102)
• 68491dd chore(expectedConditions): update generic Function typings (#5101)
• cf43651 chore(debugprint): convert debugprint to TypeScript (#5074)
• d213aa9 deps(selenium): upgrade to selenium 4 (#5095)
• 4672265 chore(browser): remove timing issues with restart and fork (#5085)
• b4dbcc2 chore(elementexplorer): remove explorer bin file (#5094)
• 7de6d85 docs(api): update examples to use async/await (#5081)
• 1b2036e typings(selenium): try out new version of typings (#5084)
• befb457 chore(bin): update webdriver-manager require to use the cli (#5093)
• 509f1b2 deps(latest): upgrade to the gulp and typescript (#5089)
• 2def202 deps(webdriver-manager): use replacement (#5088)
• 9d510db chore(test): remove jasmine addMatcher test (#5072)
• 6522e40 chore(cleanup): clean up imports and wdpromises (#5073)
• 3b8f263 chore(ignoreSynchornization): clean up to use waitForAngularEnabled (#5071)
• ffa3519 chore(debugger): remove debugger and explore methods (#5070)
• 0f7a38a chore(test): error tests fixed (#5069)

See the full diff

Package name: sass-lint

The new version differs by 94 commits.

• dac0f12 chore(release): 1.13.0 [skip ci]
• 6b5a615 Merge pull request Refused to load the script 'http://host.docker.internal:5105/lib/jquery/jquery.js' because it violates the following Content Security Policy directive: "script-src 'unsafe-inline'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback. dotnet-architecture/eShopOnContainers#1278 from srowhani/fix/release-version
• bf4f2ae fix(ci): rollback release version to match npm
• 037b459 Merge pull request Facing issue while running MVC application . Response status code does not indicate success: 500 (Internal Server Error). dotnet-architecture/eShopOnContainers#1276 from srowhani/fix/dependencies
• 37863b7 feat(ast): migrate from ast fork to latest version of gonzales
• b508036 feat(lint): adds disable-next-line
• 19df7ba Merge branch 'develop' into develop
• e391436 Merge pull request Is there any video which explains entire application and its code base in detail? dotnet-architecture/eShopOnContainers#1275 from srowhani/chore/ci-deploy-phase
• 2ab49c5 Merge branch 'develop' into chore/ci-deploy-phase
• 49b7253 chore(ci): fix build stages
• 50831b1 Merge pull request How to see edited code whiel docker is running? dotnet-architecture/eShopOnContainers#1274 from srowhani/chore/ci-release-automation
• c0bd68f chore(ci): update husky commit-msg hook
• 814259b chore(ci): increase mocha test timeout to reduce flakiness of cli suite
• 745c0ba chore(ci): update travis build rules, and update matrix
• 9a6c32e chore(ci): automated release and deployment using semantic-release
• 21a56de Merge pull request Getting error of unauthorized_client when clicking on Login button from web mvc dotnet-architecture/eShopOnContainers#1273 from srowhani/chore/ci
• 3a6b08c chore(ci): update appveyor build matrix
• 3b9f2d5 Add disable-next-line
• 594cc6c Merge pull request SPA app doesn't show the orders when using docker.for.win.localhost dotnet-architecture/eShopOnContainers#1232 from sasstools/1.13.0
• de2bbce merge with master
• bd0ed2b v1.13.0
• 501ea72 Merge pull request Login not working in 'webmvc' when running locally on docker dotnet-architecture/eShopOnContainers#1230 from ccjmne/update-smacss-ordering
• 56fb8a9 Merge branch 'develop' into update-smacss-ordering
• 268c939 Merge pull request Use internal docker dns names dotnet-architecture/eShopOnContainers#1231 from sasstools/feature_update-packages

See the full diff

Package name: typedoc

The new version differs by 250 commits.

• bde0b6a chore: Bump version to 0.21.0
• 83a7eef chore: Sort thanks in changelog
• 371e035 chore: Upgrade dependencies
• a618f20 Merge remote-tracking branch 'origin/master' into beta
• 6b69252 chore: Bump version to 0.20.37
• 0e8d429 fix: Pin `marked` dependency to 2.0.x ([QUESTION] Why there is ArgumentNullException all over the code? dotnet-architecture/eShopOnContainers#1602)
• 90cd4a0 chore: Bump version to 0.21.0-beta.4
• 6789331 chore: Remove outdated note in readme
• 1b1cd14 fix: Correctly handle comments on function type aliases
• 1dc5659 fix: Setters should always have a `void` return type
• d9e66b2 chore: Bump version to 0.21.0-beta.3
• 3f39508 fix: Resolve paths in option files according to the config directory
• 858b231 chore: Refactor tests to reduce runtime
• ec18bb0 Revert "feat: Add disableAliases option (Removes dotnet.myget.org NuGetPackage feed references dotnet-architecture/eShopOnContainers#1576)"
• 6d215df feat: Improve monorepos by adding support for TS entry points (workflow path filter including subfolders dotnet-architecture/eShopOnContainers#1596)
• f95e456 chore: Bump version to 0.21.0-beta.2
• e142f00 chore: Fix lint
• 9f56423 chore: Fix lint
• 269cf08 chore: Move package tests into TD repo
• 15c0552 feat: Support for monorepos
• 2c2b91b chore: Bump beta version
• 9e94e5c chore: Fix tests when compiling with strict=false
• b2165d3 chore: Upgrade beta version
• 5a6a125 chore: Upgrade prettier

See the full diff

Package name: webpack

The new version differs by 250 commits.

• f2f998b 5.1.1
• bcd6190 Merge pull request #11704 from webpack/bugfix/delete-asset
• 11935a9 Merge pull request #11703 from webpack/bugfix/11678
• 63ba54c update chunk to files mapping when deleting assets
• 4669600 Merge pull request #11690 from webpack/bugfix/11673
• 234373e Merge pull request #11702 from webpack/deps/terser
• b6bc273 fix infinite loop in inner graph optimization
• 50c3a83 fix unused modules in chunk when optimizing runtime-specific
• 5d9d9b9 fix runtime-specific handling in concatenated modules
• 250e37c add test case
• 7925652 upgrade terser-webpack-plugin
• 27796db Merge pull request #11669 from webpack/dependabot/npm_and_yarn/ts-loader-8.0.5
• bd5aab8 Merge pull request #11692 from webpack/dependabot/npm_and_yarn/babel/core-7.12.0
• 886bbd5 Merge pull request #11693 from webpack/dependabot/npm_and_yarn/react-dom-16.14.0
• 3a14b3d Merge pull request #11694 from webpack/dependabot/npm_and_yarn/react-16.14.0
• ddf9936 chore(deps-dev): bump react from 16.13.1 to 16.14.0
• dc6e69a chore(deps-dev): bump react-dom from 16.13.1 to 16.14.0
• 8f18de9 chore(deps-dev): bump @ babel/core from 7.11.6 to 7.12.0
• c0410e8 Merge pull request #11686 from webpack/bugfix/11677
• 4504046 order runtime chunks correctly when they depend on each other
• 74a44cd add comment to help tagging for the bot
• e97efb7 chore(deps-dev): bump ts-loader from 8.0.4 to 8.0.5
• 77329b4 5.1.0
• 48c10f3 Merge pull request #11653 from log2-hwan/fix-moduletemplate-deprecation

See the full diff

Package name: webpack-dev-server

The new version differs by 250 commits.

• 5aad1e7 chore(release): 4.8.0
• 28ad7ed chore(deps): bump graceful-fs from 4.2.9 to 4.2.10 (#4368)
• 7920364 feat: export initialized socket client (#4304)
• 4e7800e chore: update webpack (#4367)
• fbda2a8 chore(deps-dev): bump body-parser from 1.19.2 to 1.20.0 (#4366)
• 67c080b chore(deps-dev): bump puppeteer from 13.5.1 to 13.5.2 (#4361)
• 56ec411 chore(deps): bump html-entities from 2.3.2 to 2.3.3 (#4358)
• ca8a53a chore: update deps and fix audit (#4356)
• 501f6aa chore(deps-dev): bump @ babel/runtime
• 7d2b4f0 chore(deps-dev): bump @ babel/core
• 95e26fe test: add cases for `webSocketURL` with `server` option (#4346)
• 84b4774 chore: migrate script for examples on `setupMiddlewares` option (#4347)
• a7ccab1 chore: replace deprecated String.prototype.substr() (#4343)
• 1bf2614 chore(deps-dev): bump lint-staged from 12.3.6 to 12.3.7 (#4344)
• 188497a chore(deps-dev): bump prettier from 2.5.1 to 2.6.0 (#4339)
• 7560a37 chore(deps-dev): bump lint-staged from 12.3.5 to 12.3.6 (#4341)
• dc2d6f7 chore(deps): bump http-proxy-middleware from 2.0.3 to 2.0.4 (#4333)
• 552e4ab chore(deps-dev): bump @ babel/runtime
• af3de07 chore(deps-dev): bump @ babel/core
• a80fa1f chore(deps): bump @ types/ws
• 457e1e5 chore(deps-dev): bump eslint from 8.10.0 to 8.11.0 (#4334)
• b48ff7f chore(deps-dev): bump puppeteer from 13.5.0 to 13.5.1 (#4330)
• 3ce15d4 chore(deps-dev): bump puppeteer from 13.4.1 to 13.5.0 (#4329)
• a892235 chore(deps-dev): bump lint-staged from 12.3.4 to 12.3.5 (#4328)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.