[Snyk] Fix for 1 vulnerabilities

[MarcelRaschke]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

⚠️ Warning

Failed to update the package-lock.json, please update manually before merging.

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	661/1000 Why? Recently disclosed, Has a fix available, CVSS 7.5	Prototype Pollution SNYK-JS-LOADERUTILS-3043105	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: @storybook/addon-essentials

The new version differs by 250 commits.

• d0c1e8a v6.4.13
• ad95877 Update root, peer deps, version.ts/json to 6.4.13 [ci skip]
• 908cda1 6.4.13 changelog
• ee5c044 Merge pull request #17245 from storybookjs/fix-prettier-2-3-formatting-main
• c3311c0 Update snapshots
• a533573 Fix prettier 2.3 formatting on main
• 59b85c7 Merge pull request #17241 from storybookjs/17008-fix-staticdirs-favicon
• f2a7256 Merge pull request #17022 from Taillook/chore/react-dev-utils
• ec142c8 Merge pull request #17239 from storybookjs/16820-fix-prettier-transpilation
• de25e19 Merge pull request #17206 from storybookjs/angular/fix-angular-13.1
• 8fe4027 Merge pull request #17240 from storybookjs/15574-fix-namedexportsorder-warning
• 8346850 Merge pull request #17213 from storybookjs/16067-fix-manager-process
• 3a0fd74 Merge pull request #17244 from storybookjs/chore_docs_fix_composition_link
• 7e43adc Merge pull request #17224 from storybookjs/chore_docs_update_addons_install_docs
• 373ca10 Merge pull request #17221 from storybookjs/chore_docs_fix_addon_knowledge_base
• 1e1331d Merge pull request #17208 from storybookjs/chore_docs_updates_syntax_highlight_docs
• 00a6c36 Merge pull request #17203 from storybookjs/chore_fix_repro_docs
• f0a2216 6.4.12 latest.json version file
• 180e481 Update git head to 6.4.12, update yarn.lock
• 9ce1a3b v6.4.12
• b278a84 Update root, peer deps, version.ts/json to 6.4.12 [ci skip]
• 7610bf0 6.4.12 changelog
• 704d82a Update git head to 6.4.11, update yarn.lock
• dc7fc7b v6.4.11

See the full diff

Package name: @storybook/vue

The new version differs by 250 commits.

• d0c1e8a v6.4.13
• ad95877 Update root, peer deps, version.ts/json to 6.4.13 [ci skip]
• 908cda1 6.4.13 changelog
• ee5c044 Merge pull request #17245 from storybookjs/fix-prettier-2-3-formatting-main
• c3311c0 Update snapshots
• a533573 Fix prettier 2.3 formatting on main
• 59b85c7 Merge pull request #17241 from storybookjs/17008-fix-staticdirs-favicon
• f2a7256 Merge pull request #17022 from Taillook/chore/react-dev-utils
• ec142c8 Merge pull request #17239 from storybookjs/16820-fix-prettier-transpilation
• de25e19 Merge pull request #17206 from storybookjs/angular/fix-angular-13.1
• 8fe4027 Merge pull request #17240 from storybookjs/15574-fix-namedexportsorder-warning
• 8346850 Merge pull request #17213 from storybookjs/16067-fix-manager-process
• 3a0fd74 Merge pull request #17244 from storybookjs/chore_docs_fix_composition_link
• 7e43adc Merge pull request #17224 from storybookjs/chore_docs_update_addons_install_docs
• 373ca10 Merge pull request #17221 from storybookjs/chore_docs_fix_addon_knowledge_base
• 1e1331d Merge pull request #17208 from storybookjs/chore_docs_updates_syntax_highlight_docs
• 00a6c36 Merge pull request #17203 from storybookjs/chore_fix_repro_docs
• f0a2216 6.4.12 latest.json version file
• 180e481 Update git head to 6.4.12, update yarn.lock
• 9ce1a3b v6.4.12
• b278a84 Update root, peer deps, version.ts/json to 6.4.12 [ci skip]
• 7610bf0 6.4.12 changelog
• 704d82a Update git head to 6.4.11, update yarn.lock
• dc7fc7b v6.4.11

See the full diff

Package name: @vue/cli-plugin-eslint

The new version differs by 250 commits.

• c913cdc v5.0.0
• e75a288 chore: pre release sync
• e7f07d8 docs: remove `@ next` [skip ci]
• 80bbf38 test: skip nightwatch --parallel test for now
• 9be19f0 test: fix tsx import
• 5cf0e13 feat: bump default typescript version to 4.5
• 22a4a53 chore: dependency maintenance
• 9577cf5 chore: Merge branch 'master' into dev
• 8b5ab22 fix: remove --skip-plugin from arguments passed to the plugins (Fix assert statements in DB unit tests internetarchive/openlibrary#6972)
• ff035c6 chore(deps): bump follow-redirects from 1.14.7 to 1.14.8 (fix text selection for selectable items internetarchive/openlibrary#6993)
• d302581 fix: update mini-css-extract-plugin to ^2.5.3 (Create check-in on reading log add internetarchive/openlibrary#6987)
• 2d8fa26 test(nightwatch): skip selenium test for now
• 7a17d98 chore: replace eslint-plugin-graphql with @ graphl-eslint/eslint-plugin
• 75a6d69 v5.0.0-rc.3
• c214c3a chore: pre release sync
• 42fc8d4 docs: add cache-loader and nightwatch breaking changes [skip ci]
• 926855f feat!: make `cache-loader` optional (Update authors.html internetarchive/openlibrary#6985)
• 342c386 fix: there's a command response format change in nightwatch v2
• b78a003 chore: update web drivers
• 6c91e1a chore: update lockfile
• 37bdc0e chore: remove the console log completely and fix lint error
• 1c1f1ef chore: fix typo (ol-www0 anonymized IP metrics tools require upgrade internetarchive/openlibrary#6964)
• a2b6409 feat: add build stats hash support (Author not added to work if neither the pop-up author name, nor "Create a new record for" is selected on /books/add internetarchive/openlibrary#6980)
• 0cbdf5f fix: specify vue version in the web component demo html

See the full diff

Package name: @vue/cli-service

The new version differs by 250 commits.

• 92d80a8 v5.0.1
• c913cdc v5.0.0
• e75a288 chore: pre release sync
• e7f07d8 docs: remove `@ next` [skip ci]
• 80bbf38 test: skip nightwatch --parallel test for now
• 9be19f0 test: fix tsx import
• 5cf0e13 feat: bump default typescript version to 4.5
• 22a4a53 chore: dependency maintenance
• 9577cf5 chore: Merge branch 'master' into dev
• 8b5ab22 fix: remove --skip-plugin from arguments passed to the plugins (Fix assert statements in DB unit tests internetarchive/openlibrary#6972)
• ff035c6 chore(deps): bump follow-redirects from 1.14.7 to 1.14.8 (fix text selection for selectable items internetarchive/openlibrary#6993)
• d302581 fix: update mini-css-extract-plugin to ^2.5.3 (Create check-in on reading log add internetarchive/openlibrary#6987)
• 2d8fa26 test(nightwatch): skip selenium test for now
• 7a17d98 chore: replace eslint-plugin-graphql with @ graphl-eslint/eslint-plugin
• 75a6d69 v5.0.0-rc.3
• c214c3a chore: pre release sync
• 42fc8d4 docs: add cache-loader and nightwatch breaking changes [skip ci]
• 926855f feat!: make `cache-loader` optional (Update authors.html internetarchive/openlibrary#6985)
• 342c386 fix: there's a command response format change in nightwatch v2
• b78a003 chore: update web drivers
• 6c91e1a chore: update lockfile
• 37bdc0e chore: remove the console log completely and fix lint error
• 1c1f1ef chore: fix typo (ol-www0 anonymized IP metrics tools require upgrade internetarchive/openlibrary#6964)
• a2b6409 feat: add build stats hash support (Author not added to work if neither the pop-up author name, nor "Create a new record for" is selected on /books/add internetarchive/openlibrary#6980)

See the full diff

Package name: webpack

The new version differs by 250 commits.

• 610f368 5.0.0
• 5ce65c1 update examples
• bbe1230 Merge pull request #11628 from webpack/bugfix/real-content-hash
• 75ecff2 5.0.0-rc.6
• bfc35d6 Merge pull request #11603 from MayaWolf/master
• 76e8cbd Merge pull request #11622 from webpack/dependabot/npm_and_yarn/types/node-13.13.25
• 9fd1be2 chore(deps-dev): bump @ types/node from 13.13.23 to 13.13.25
• 36bcfaa Merge pull request #11621 from webpack/bugfix/11619
• 9130d10 fix called variables with ProvidePlugin
• 3e42105 Merge pull request #11620 from webpack/bugfix/11617
• 4709719 skip connections copied to concatenated module
• 57b493f 5.0.0-rc.5
• 1658e2f Merge pull request #11618 from webpack/bugfix/11615
• a8fb45d fixes crash in SideEffectsFlagPlugin
• 84b196d emit error instead of crashing when unexpected problem occurs
• 5573fed Merge pull request #11601 from Hornwitser/improve-suggested-polyfill-config
• 9b5cce9 Merge pull request #11609 from snitin315/export-types
• 37c495c export type RuleSetUseItem
• 39faf34 export type RuleSetUse
• e5fd246 export type RuleSetConditionAbsolute
• 660baad export RuleSetCondition types
• 13e3ca5 Merge pull request #11602 from webpack/bugfix/shared-runtime-chunk
• 9c0587e Merge pull request #11606 from webpack/dependabot/npm_and_yarn/simple-git-2.21.0
• 502d166 Merge pull request #11607 from webpack/dependabot/npm_and_yarn/acorn-8.0.4

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Prototype Pollution