[Snyk] Fix for 1 vulnerabilities

[kinexis-uk]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	658/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: solc

The new version differs by 250 commits.

• 251e99f Merge pull request verifying token  poanetwork/token-wizard#405 from ethereum/prepare0513
• 80324e3 Preparing 0.5.13
• 3bb3971 Merge pull request (Feature) Register created contracts poanetwork/token-wizard#404 from ethereum/reorder-helpers
• cb1cee7 Reorder functions in wrapper (move version/license early)
• ec9a55e Merge pull request Sending tokens to other Adress: failed transaction poanetwork/token-wizard#403 from ethereum/tests-errors
• 99df4ae Fix librariesSupplier in compileStandardWrapper
• fcf0ecf Add tests for error cases in StandardCompiler
• 1d95d3f Merge pull request issue in sending tokens poanetwork/token-wizard#394 from ethereum/test-versions
• 99390aa Remove unneccessary condition in wrapStandardCompiler
• 5441f2c Run semistandard
• 8447a50 Download locally using curl
• f272af9 Run tests for bunch of more versions
• bba5ab9 Merge pull request (Feature) Manage Created Crowdsale Contracts (choose contract button + popup) poanetwork/token-wizard#401 from ethereum/test-reorg
• 5ed5e6c Rename test fixtures to be consistent and place them under test/resources
• f750d30 Merge pull request (Fix) Transaction underpriced poanetwork/token-wizard#393 from ethereum/drop-dao-tests
• bc8ac05 Merge pull request utils.js:37 Error: Returned error: Unexpected token < in JSON at position 0 poanetwork/token-wizard#399 from ethereum/test-fixes
• 57390cd Do not run import callback test on <0.2.1
• b547aa2 Merge pull request (Fix) There is no warning alert before step 4 in Mainnet poanetwork/token-wizard#398 from ethereum/test-fixes
• 62cf071 Backport new callback API to 0.5 to compileStandardWrapper
• 5de2854 Fix tests to properly check for types and not implicitly cast strings to booleans
• 2f79710 Merge pull request (Fix) Global min cap poanetwork/token-wizard#397 from ethereum/rename
• 8f6fa04 Rename test/package.js to test/compiler.js
• abb4d8a Merge pull request (Refactor) Switch from SweetAlert to SweetAlert2 poanetwork/token-wizard#396 from ethereum/cvc4_timeout
• a8e6c3c Add timeout for SMT solvers

See the full diff

Package name: webpack

The new version differs by 250 commits.

• 213226e 4.0.0
• fde0183 Merge pull request #6081 from webpack/formating/prettier
• b6396e7 update stats
• f32bd41 fix linting
• 5238159 run prettier on existing code
• 518d1e0 replace js-beautify with prettier
• 4c25bfb 4.0.0-beta.3
• dd93716 Merge pull request #6296 from shellscape/fix/hmr-before-node-stuff
• 7a07901 Merge pull request #6563 from webpack/performance/assign-depth
• c7eb895 Merge pull request #6452 from webpack/update_acorn
• 9179980 Merge pull request #6551 from nveenjain/fix/templatemd
• e52f323 optimize performance of assignDepth
• 6bf5df5 Fixed template.md
• 90ab23a Merge branch 'master' into fix/hmr-before-node-stuff
• b0949cb add integration test for spread operator
• 39438c7 unittest now also walks the ast
• 15ab027 Merge pull request #6536 from jevan0307/sideEffects-selectors
• 1611ce1 Merge pull request #6561 from joshunger/patch-1
• 6e175bc Merge pull request #6549 from webpack/md4_hash
• 0637531 Add a hyperlink to create a new issue
• 0e1f9c6 Merge pull request #6554 from webpack/deps/end-of-beta
• 72477f4 upgrade versions to stable versions
• ed30285 Merge pull request #6546 from webpack/bot/review-permission
• 40ee8c7 Use MD4 for hashing

See the full diff

Package name: webpack-dev-server

The new version differs by 250 commits.

• c5b9c7e chore(release): 4.6.0
• 1ba9720 fix: reload on warnings (#4056)
• 5026601 feat: allow to pass all `chokidar` options (#4025)
• 7e78bfa chore(deps-dev): bump webpack from 5.64.2 to 5.64.3 (#4054)
• f2a7d16 chore(deps-dev): bump memfs from 3.3.0 to 3.4.0 (#4055)
• d104b58 chore: remove redundant `eslint-disable` comments (#4053)
• e6330f5 chore: remove redundant snapshots (#4052)
• cf26a3f chore(deps): bump ws from 8.2.3 to 8.3.0 (#4051)
• 7823237 chore(deps-dev): bump lint-staged from 12.1.1 to 12.1.2 (#4048)
• 9b32c96 fix: reconnection logic (#4044)
• 5e7c001 chore(deps-dev): bump eslint from 8.2.0 to 8.3.0 (#4045)
• 12d6d52 chore(deps-dev): bump lint-staged from 12.0.2 to 12.1.1 (#4047)
• 7ed2ba3 chore(deps-dev): bump webpack from 5.64.1 to 5.64.2 (#4046)
• b497f68 docs: fix typo (#4042)
• 285487f chore(deps): remove unused (#4036)
• a19ee71 chore(deps-dev): bump acorn from 8.5.0 to 8.6.0 (#4040)
• 497e615 chore(deps): bump webpack-dev-middleware
• ec882db chore(deps-dev): bump typescript from 4.4.4 to 4.5.2 (#4034)
• 7d117de chore: update dependencies (#4033)
• a5b1c70 chore: update `schema-utils` (#4032)
• d3be607 chore(deps): bump @ babel/preset-env from 7.16.0 to 7.16.4 (#4030)
• 25bace8 chore(deps): bump @ babel/plugin-transform-runtime (#4031)
• 6a5b58d docs: fix `--https` option alignment (#4028)
• fd8c54a chore: remove redundant `eslint-disable` comments (#4024)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)