[Snyk] Fix for 6 vulnerabilities

[kampana]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • reactSite/package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Information Exposure SNYK-JS-FOLLOWREDIRECTS-2332181	No	Proof of Concept
	344/1000 Why? Has a fix available, CVSS 2.6	Information Exposure SNYK-JS-FOLLOWREDIRECTS-2396346	No	No Known Exploit
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-GLOBPARENT-1016905	Yes	Proof of Concept
	506/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 3.7	Prototype Pollution SNYK-JS-MINIMIST-2429795	Yes	Proof of Concept
	601/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.6	Prototype Pollution SNYK-JS-MINIMIST-559764	Yes	Proof of Concept
	589/1000 Why? Has a fix available, CVSS 7.5	Prototype Pollution SNYK-JS-UNSETVALUE-2400660	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: axios

The new version differs by 64 commits.

• 5c8095e Releasing 0.16.1
• 982183c Updating changelog
• fa58223 Merge pull request #828 from mzabriskie/feature/return-last-request-in-redirects
• a18f039 Merge pull request #829 from jcready/patch-3
• df6b46c Add caret
• 04982a2 Update follow-redirects dependency
• 19644ba Adding documentation for Buffer data
• 1883344 support node buffers less than 8192 bytes (#773)
• bbfbeff Minor grammar/line length changes (#547)
• a784774 Adding comment about header names (#778)
• 88cc84c Adding documentation for response.request
• 84d9a41 Adding code to assign the last request to axios response
• e5beab0 Adding test checking the request in axios response is the last in a redirect
• 08eb985 Merge pull request #818 from carlosromel/patch-1
• 21b43ed Merge pull request #826 from mzabriskie/github-templates
• 34b63f8 Adding additional instruction line
• bb57daa Adding templates for issues and pull requests
• 23c4dfc Update README.md
• a8dab57 Merge pull request #741 from model3volution/Update/readme
• 19b7948 Releasing 0.16.0
• e6ffc52 Updating Upgrage Guide
• 8d675bb Merge branch 'master' of github.com:mzabriskie/axios
• 5b904d5 Updating changelog
• efc1f11 Merge pull request #781 from TomyJaya/TomyJaya-patch-1

See the full diff

Package name: webpack

The new version differs by 250 commits.

• 4be093d 2.2.0
• 2278469 2.2.0-rc.8
• b946eb4 Merge pull request #3988 from malstoun/bug/2664
• 260e413 Merge pull request #3986 from webpack/bugfix/revert_use_of_buffer_dot_from
• 0ec7de9 Fix regression with watch cli opt, add tests for this case
• 72226db add missing disable line
• 4d30675 build fresh yarn.lock file to remove buffer polyfill
• 91c1f35 fix(node): rollback changes of Buffer.from to new Buffer() and bump down travis to 4.3 min node v
• 0b47602 2.2.0-rc.7
• db6ccbc Merge pull request #3978 from webpack/bugfix/conditional-reexports
• 82a5b03 Merge pull request #3977 from malstoun/bug/2664
• fc1a43b Merge pull request #3976 from timse/rely-on-defaults
• a44694a hoist exports declarations too
• 682bde8 Fix lint
• c6d7d90 Add tests
• af8d49e remove defaults values to shave a few bytes
• 9796696 2.2.0-rc.6
• e9bdb05 Merge pull request #3971 from webpack/bugfix/fix_available_vars_in_fmtp
• bd45bdc add test case for global in harmony modules
• bfccb20 fix PR
• 5a3a23f fix(nmf): Fix exports for var injection to include free glob exports or arguments
• 437dce4 2.2.0-rc.5
• 91cb1df Merge pull request #3970 from webpack/ci/appveyor
• 9fd55e5 Merge pull request #3969 from webpack/bugfix/issue-3964

See the full diff

Package name: webpack-dev-server

The new version differs by 250 commits.

• 298341f chore(release): 2.11.4
• c42d0da fix: check origin header for websocket connection (#1626)
• 2be7196 chore: update dependencies in V2 branch, fix compatibility with Node 10 (#1715)
• 7cdfb74 2.11.3
• b71137e Increase sockjs-client version for security fix
• f33be5b 2.11.2
• dd32166 Fix support for DynamicEntryPlugin (#1319)
• ab4eeb0 Fix page not reloading after fixing first error on page (#1317)
• 83c1625 2.11.1
• 3aa15aa Merge pull request #1273 from yyx990803/master
• b78e249 fix: pin strip-ansi to 3.x for ES5 compat
• 8c1ed7a 2.11.0
• b0fa5f6 Merge pull request #1270 from yyx990803/client-refactor
• 676d590 revert to prepublish (fix ci)
• 449494f cleanup client build setup
• 6689cb8 adding test for dependency lock-down
• 3e220fe 2.10.1
• aaf7fce rollback yargs to 6.6.0
• ca8b5aa 2.10.0 (#1258)
• 17355f0 transpile client bundles with babel (#1242)
• ce30460 rolling back webpack-dev-midddleware 2.0, as it's node6+
• 00e8500 updating deps and patching as necessary
• 082ddae maint only mode
• c9c61f2 fix(package): Increase minimum `marked` version for ReDos vuln (#1255)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)
🦉 Prototype Pollution