[Snyk] Fix for 1 vulnerabilities

[magikMaker]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	768/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.5	Prototype Pollution SNYK-JS-QS-3153490	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: less-middleware

The new version differs by 10 commits.

• 5902c1a Merge pull request #115 from emberfeather/Zoramite-patch-1
• afab7b6 Adding a changelog and updating to version 2.0.0
• 37ed8ce Adding the `cacheFile` option back to the middleware.
• d8f3351 Bringing back the ability to monitor the imports for changes to trigger recompile.
• 3269f1b Bumping version number.
• bedc358 Fixing up the sourcemaps test and processing to work correctly.
• adc79fa Removing leftover test fixtures from removing the cachefile option.
• cc500e8 Fixing the code to work with the switch to the latest less version.
• b8a3427 Updating the dependency list.
• cafdcb9 Updating to less 2.2.x

See the full diff

Package name: tiny-lr

The new version differs by 74 commits.

• c32226a package.json: move npm-watch to devDependencies
• d59ca25 Update livereload-js to latest
• f5c4a29 Cleanup dependencies, remove Makefile and rework as npm run scripts
• ddf0db9 Add yarn.lock
• 2dad1b2 example: rework express example to use gaze
• 2f3db7f Merge pull request #108 from mklabs/dev
• 7408308 Merge pull request #112 from aknuds1/language
• b923279 Language improvements
• b83382d review: es6ify lib/index.js
• 20a49a8 review: use imports for lib server & client
• 5e3f12a Merge branch 'master' into dev
• d150157 review: export default, options default, remove EventEmitter.call(this)
• 97df802 review: es6ify test & examples
• 6b27fd6 review: babelify tests
• 5dc0d34 Remove unused `liveJs` option
• 81c9eb8 Merge pull request #109 from bantic/remove-live-js-option
• 7838602 Remove unused `liveJs` option
• 1c67652 Add contributors field to package.json with team collaborators
• 5c56ce0 Remove webdriver scripts, move test/wd as test/http.js
• 793fd1b Bump package.json to 1.0.0
• 43ab8ff Merge branch 'master' into dev
• 09efa64 Extract cli part into its own repo
• d92e42e cli - automatically watch all js / css files and send change event
• e3fa98e build - update package.json to use make instead of bake

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Prototype Pollution